update allow methods in MFA settings in Azure AD

Question

soorya raj 81

Hi I am looking for an API to update default and allowed method in mfa settings of azure ad

i tried

which failed with below error(I think it is not a valid api)

Resource not found for segment 'users('******@xx.onmicrosoft.com')/authentication/methods'.\"

I have a requirement like enable mfa with phone message but method but the number must be given by user.

below url need mandatory mobile number so i can't use that too

1 answer

Answer 1

Vasil Michev 119.9K MVP Volunteer Moderator

For example to configure settings for the Voice call method, you'd use:

PATCH /policies/authenticationMethodsPolicy/authenticationMethodConfigurations/voice

Refer to the documentation above for more details.

soorya raj 81 Reputation points

2024-09-04T07:07:12.55+00:00
tried below code but the authentication method is still not updated here

used patch: https://graph.microsoft.com/v1.0/authenticationMethodsPolicy/authenticationMethodConfigurations/sms

body:

{ "@odata.type": "#microsoft.graph.smsAuthenticationMethodConfiguration", "id": "Sms", "state": "enabled", "includeTargets": [ { "id": "898f0526-c111-485e-be53-56be172d8a67" } ] }
Vasil Michev 119.9K Reputation points MVP Volunteer Moderator

2024-09-04T08:33:12.47+00:00

If you want to update the configured auth methods for a user, use /authentication/methods. If you want to update the allowed methods for a user, use /policies/authenticationMethodsPolicy/. Read the documentation above if you need more details.