Hi @Jason Susanto , In general, the Azure AD B2C forget password user flow executes the Email MFA verification step to ensure that the user who is resetting the password is the same user who owns the email address associated with the account. If the user has already completed the MFA verification for the sign-in process, it should not prompt the user to do it again during the forget password process.
To troubleshoot the issue, please check the following:
- Verify that the user flow is configured correctly and that the MFA verification step is only included once in the user flow.
- Check if there are any conflicting policies or settings that may be causing the issue.
- Ensure that the user is not using different email addresses for sign-in and forget password process.
Please let me know if you have any questions and I can help you further.
If this answer helps you please mark "Accept Answer" so other users can reference it.
Thank you,
James