Implementation 2MFA Office365 Error Mask with QR Code does not come

Michael Lesswing 0 Reputation points
2024-11-07T10:54:01.8166667+00:00

Hello team,

We have a process with 2MFA conversion for several customers with the same settings and configurations in the company portal that work. A guideline for 2MFA was created based on the MS template.

We now have a customer where we already have 8 users in the 365_MFA_activated_User group, and the screen asking for the QR code for the MS Auth APP came up every time, with successful completion.

This process does not work for one user only, the screen asking for the phone number always comes up.

For your information, this user also had a private Office365 account at Live.com with the same email as the business account, I changed this to another one yesterday, user@outlook.de, so that it no longer has anything to do with the customer's domain. Kind regards

Microsoft Authenticator
Microsoft Authenticator
A Microsoft app for iOS and Android devices that enables authentication with two-factor verification, phone sign-in, and code generation.
7,419 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,536 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Bhasker Donthu 940 Reputation points Microsoft Vendor
    2024-11-08T09:33:21.9933333+00:00

    Hello @Michael Lesswing,

    Thank you for posting your query on Microsoft Q&A.

    I understand you're encountering an MFA issue for a specific user in a 365_MFA_activated_User group. To provide the best solution, please share additional details on how you configured MFA for this group, along with any relevant screenshots.
    Additionally, here are a few troubleshooting steps to consider:

    1.Verify Group Membership: Ensure the user is correctly added to the 365_MFA_activated_User group or any other group required for MFA enforcement.

    2.Check MFA Settings in Azure AD:

    ·       Confirm that the user’s MFA settings are properly configured in the Azure AD portal.

    ·       Verify that they are enrolled in the MFA process and that their authentication methods (such as phone or authenticator app) are set up correctly. Refer to this guide for managing MFA settings https://support.microsoft.com/en-us/account-billing/change-your-two-step-verification-method-and-settings-c801d5ad-e0fc-4711-94d5-33ad5d4630f7

    3.Remove and Re-Add User to MFA Group:

    ·       Remove the user from the 365_MFA_activated_User group, wait a few minutes, and then re-add them. This step can sometimes refresh the MFA configuration and resolve setup issues.

    4.Reset User’s MFA Settings:

    ·       In the Azure AD portal, locate the user and select Manage multi-factor authentication settings. From there, you can reset their MFA configuration. This action will prompt the user to complete the MFA setup process again, which may resolve the issue.

    I hope this information is helpful. Please feel free to reach out if you have any further questions.
    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.