re-register MFA

Rami Wurmbrand 40 Reputation points
2024-01-08T13:32:29.48+00:00

Hello

 

For a regular account, I would like to give permission to execute "Require re-register multifactor authentication" for non-admin accounts .

  1. Is there a suitable role?
  2. If I create a new role for this operation, what permissions do I need to give to carry out this specific operation?

 

Thank you

mfa01

Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
824 questions
0 comments No comments
{count} votes

Accepted answer
  1. Domooney-MSFT 2,586 Reputation points Microsoft Employee
    2024-01-08T16:08:24.6533333+00:00

    Hi @Rami Wurmbrand

    We do have a legend here which outlines the Entra ID roles and which actions they can perform. Least privileged role for resetting a users MFA methods would be "Authentication Administrator" - https://learn.microsoft.com/en-us/entra/identity/role-based-access-control/permissions-reference#authentication-administrator

    Let me know if you have any further queries, I would be happy to help!

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    1 person found this answer helpful.

1 additional answer

Sort by: Most helpful
  1. Andreas Baumgarten 110.6K Reputation points MVP
    2024-01-08T15:09:15.9066667+00:00

    Hi @Rami Wurmbrand ,

    as far as I know there is no dedicated Azure Entra ID role permission available for triggering the "Require re-register multifactor authentication".

    The built-in RBAC role User Administrator should be the able to get this done.


    (If the reply was helpful please don't forget to upvote and/or accept as answer, thank you)

    Regards

    Andreas Baumgarten


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.