How to enable push notifications for azure AD B2C MFA

Sukeerthi 21 Reputation points
2024-03-27T08:44:47.47+00:00

Hi Team,

I would like to know if push notification feature has implemented for ADB2C MFA?

Thanks,

Sukeerthi

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,821 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Yanhong Liu 1,550 Reputation points Microsoft Vendor
    2024-03-28T03:23:04.15+00:00

    Hello

    To enable the push notification-based multi-factor authentication (MFA) feature for Azure AD B2C (Azure Active Directory B2C), you can follow the steps below to configure it: Prerequisites: Ensure that the user has installed and configured an authentication application that supports push notifications, Such as Microsoft Authenticator. If users don't already have it installed, instruct them to download it from the app store and follow the in-app prompts to add their Azure AD B2C account.

    1. Sign in to the Azure portal: Sign in to the Azure portal using an account with appropriate permissions (such as Global Administrator or Azure AD B2C Administrator role).
    2. Navigate to Azure AD B2C: In the left navigation of the Azure portal, select Azure Active Directory (or just search for "Azure AD B2C") and select your Azure AD B2C tenant.
    3. Configure the authentication method policy: On the Azure AD B2C tenant page, find and click Authentication Methods (in the Manage section). Here you can manage the various methods your users use for multi-factor authentication.
    4. Edit the MFA settings: On the Authentication Methods page, locate the user group or global setting associated with the user flow or custom policy for which you want to enable push notifications. Click the corresponding Edit button to adjust MFA settings.
    5. Enable push notifications: In the interface for editing MFA settings, find the option related to mobile app push, usually labeled "Microsoft Authenticator," "Authenticator App," or something similar. Make sure this option is checked or checked to enable push notification based verification method.
    6. (Optional) Configure priority or default method: If desired, you can specify push notifications as the default or preferred MFA method, or adjust its order in the list of available verification methods. This depends on your security policy and user preferences.
    7. Save the configuration: Once you have completed the setup, make sure to click the Save or Update button to save the changes to the MFA method policy. Configuration changes may take some time to take effect tenant-wide.

    Once the above steps are completed, when users trigger the MFA flow in a protected Azure AD B2C app or service, they will be able to receive push notifications and confirm with their configured authentication app (such as Microsoft Authenticator), completing multiple Factor authentication process.

    Best Regards,

    Yanhong Liu

    ============================================

    If the Answer is helpful, please click "Accept Answer" and upvote it.