Prevent constant MFA requests for hybrid workforce

Chad Brosseau 0 Reputation points
2024-04-24T15:47:45.92+00:00

Hello,

Most of our users are hybrid, working remotely via VPN and locally in office. Regardless of our 30-day MFA policy, our users are prompted for MFA every few days if they move locations between working at home and at the office.

We are a non-profit healthcare organization of 600 staff, using primarily Office E3 & Azure P1, Exchange in the cloud, and local AD sync. I cannot for the life of me determine what policies I need to adjust to get consistent results from MFA. 30 days should be 30 days. Employee devices are laptops with domain accounts- nothing is being wiped or reset.

If there is some special Conditional Access magic that I am missing, I am all ears- but the current state of this is unsustainable.

Thank you,

CB

Outlook
Outlook
A family of Microsoft email and calendar products.
3,076 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,962 questions
Office Management
Office Management
Office: A suite of Microsoft productivity software that supports common business tasks, including word processing, email, presentations, and data management and analysis.Management: The act or process of organizing, handling, directing or controlling something.
2,016 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,790 questions
{count} votes

2 answers

Sort by: Most helpful
  1. Andy David - MVP 142.6K Reputation points MVP
    2024-04-24T16:25:14.19+00:00

  2. 2024-04-25T07:36:46.61+00:00

    Use the Microsoft Entra sign-ins report. This report shows authentication details for events when a user is prompted for multifactor authentication, and if any Conditional Access policies were in use: https://learn.microsoft.com/en-us/entra/identity/authentication/howto-mfa-reporting#view-the-microsoft-entra-sign-ins-report