This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Prompted upon sign in:
More information required
Your organization needs more information to keep your account secure.
Azure AD has Security Defaults set to disabled.
No Conditional Access policies for MFA assigned to this account
MFA status in legacy MFA portal set to Disabled
Due to the systems used with this account it needs all MFA prompts disabled. Anything else I could be missing to get this prompt removed on this account?
Appreciate the help.
Make sure, it's a prompt for setting up MFA and not - as in a case I had yesterday - because you've enabled Self-Service Password Reset. It looks similar. When we disabled Self-Service Password Reset, the prompt disappeared.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 81%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
In Azure AD you can enable and disable Azure MFA these ways:
Note that when you start using Conditional Access you should "Disable" all of your users the old way. Conditional Access doesn't flip the enable/disable/enforce flag. If using Conditional Access then they should all be disabled as per user MFA overrides CA.
If the MFA has been enabled through the MFA service portal, then you can go to the MFA service portal and disable the MFA for those users there.
You can also check in the admin center but anything in the admin center should be immediately reflected in the regular MFA service portal, and vice versa.
Let me know if this helps!
@MarileeTurscak thanks for the reply. For this account in the MFA service portal they are set to disabled. I do have a conditional access policy configured for MFA but the only user it applies to is my account which is separate from the one in question. Is there anywhere else that this could be forcing this prompt upon sign in. This seems like unexpected behaviour after verifying the settings you listed are disabled / not applied to the user.
@GriffinSabo-6719 if MFA is disabled everywhere, then you should look at self-service password reset settings
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(92.8, 28.000000000000004%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EOB%3C/text%3E%3C/svg%3E)
self-service password reset settings resolved my issue, thanks
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 50%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EYB%3C/text%3E%3C/svg%3E)
@Robert Thank you !!
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(284.8, 39%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDD%3C/text%3E%3C/svg%3E)
Also note that if MFA is enforced in the Per-user MFA portal, that this can have an effect on the Conditional Access Policies MFA enforcement. Best to confirm that the users affected make use of CA's MFA enforcement instead of per-user MFA enforcement.
https://learn.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-userstates