How do I register with MS Entra as an MFA provider?

Question

How do I register with MS Entra as an MFA provider?

KIM HANSEOB 0

We are providing MFA services.
We would like to enable administrators using MS Entra to set up authentication using our MFA.

We would like to provide our authentication using MS Entra Conditional Access. Is there a guide or API document for that?

ex) like duo

JamesTran-MSFT 36,911 Reputation points Microsoft Employee Moderator

2024-01-05T20:15:36.8666667+00:00

@KIM HANSEOB

I wanted to check in and see if you had any other questions or if you were able to resolve this issue?

If you have any other questions, please let me know. Thank you for your time and patience throughout this issue.

If the information helped address your question, please Accept the answer. This will help us and also improve searchability for others in the community who might be researching similar information.

1 answer

Your answer

JamesTran-MSFT 36,911 Reputation points Microsoft Employee Moderator

2024-01-05T20:15:36.8666667+00:00

@KIM HANSEOB

I wanted to check in and see if you had any other questions or if you were able to resolve this issue?

If you have any other questions, please let me know. Thank you for your time and patience throughout this issue.

If the information helped address your question, please Accept the answer. This will help us and also improve searchability for others in the community who might be researching similar information.

Answer 1

@KIM HANSEOB

Thank you for your post!

When it comes to using MS Entra ID MFA via Conditional Access Policies, you should be able to do this by following the Secure user sign-in events with Microsoft Entra multifactor authentication documentation. With Microsoft Entra MFA, you can use other MFA applications such as Duo, rather than the standard Microsoft Authenticator App.

Prerequisites:

A working Microsoft Entra tenant with Microsoft Entra ID P1 or trial licenses enabled.
- If you need to, create one for free.
An account with Conditional Access Administrator, Security Administrator, or Global Administrator privileges. Some MFA settings can also be managed by an Authentication Policy Administrator. For more information, see Authentication Policy Administrator.

Create a Conditional Access policy

Sign in to the Microsoft Entra admin center as at least a Conditional Access Administrator.
Browse to Protection > Conditional Access, select + New policy, and then select Create new policy.
Walk through the entire CA policy configuration prior to saving.

User's image

Note: To prevent any type of lockout scenario, please ensure your Global Admin user or a Break Glass Account is created and excluded from the CA policy. For more info - Manage emergency access accounts in Microsoft Entra ID.

Additional Links:

I hope this helps!

If you have any other questions, please let me know. Thank you for your time and patience throughout this issue.

If the information helped address your question, please Accept the answer. This will help us and also improve searchability for others in the community who might be researching similar information.

KIM HANSEOB 0 Reputation points

2024-01-15T09:23:05.2866667+00:00

Isn't the method you guided me to apply MFA?

What I want is to provide our services.

ex)

{
"Name": "",
"AppId": "00000000-0000-0000-0000-000000000000",
"ClientId": "00000000-0000-0000-0000-000000000000",
"DiscoveryUrl": "",
"Controls": [{
"Id": "",
"Name": "",
"ClaimsRequested": [{
"Type": "",
"Value": "",
"Values": null
}]
}]
}

The DUO service requires users to register their json in custom contraol (preview).

We also want to provide these json to users so that they can use our authentication service, but we can't find a guide.

What does JSON's key mean? And so on

We want to provide and we want the right document.

Share via

How do I register with MS Entra as an MFA provider?

1 answer

Your answer