This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Hello,
I am currently deploying Azure MFA (cloud) in my organization.
I have set up a MFA "any time" strategy for my admin account and a conditional access MFA for a bunch of test users (requiring MFA when logging in "not trusted" places - that is ouside our office-IP range). It works prety well in these remote working troubles times.
EXCEPT that, no MFA is requested when logging in through IE or Edge webbrowser.
still... no MFA requested in IE/Edge.
What am I doing wrong?
Thanks in advance for your help
Is the device Azure AD joined? If so, that's the expected behavior. In such scenarios you authenticate via the so-called primary refresh token, which is considered as a form of MFA.
Thank you for your enlightments!
My device is Azure AD "registered", not joined, does it make any difference?
For the purposes of authentication to Azure AD/Office 365 resources, you can consider them the same.
Thanks a lot!