For your needs, you can use filter when sending requests to filter out users who do not use MFA.
The value of the property isMfaRegistered
indicates whether or not MFA is used, so the filter condition is isMfaRegistered eq false
, and here is the full request path:
GET https://graph.microsoft.com/beta/reports/authenticationMethods/userRegistrationDetails?$filter=isMfaRegistered eq false
Here are the results of my tests, and you can see that all non-MFA users are filtered out.
See this link for more usage of this endpoint:
Hope this helps.
If the reply is helpful, please click Accept Answer and kindly upvote it. If you have additional questions about this answer, please click Comment.