NPS extension with Azure MFA

Sam Cook 41 Reputation points

Hi there,
It been few days since Im scratching my head with issue and wondering if someone can help.
My NPS server seems not forwarding the AUTH request to Azure for MFA, local authentication works fine.
I have configure everything as per the below guide...
and event view on NPS shows the below message and discarding the auth request..
NPS Extension for Azure MFA: CID: xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxx : Request Discard for user user@keyman .com with Azure MFA response: UserNotFound and message: The specified user was not found.,,,xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxx.

I wondering if anyone came across this issue and know how to fix it ?
Thank you all in advanced.

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,659 questions
No comments
{count} votes

Accepted answer
  1. AmanpreetSingh-MSFT 55,431 Reputation points

    @Sam Cook , To check SAMaccountname on Azure, you can login to with the same user by clicking on Sign-in using Microsoft button on the left and make GET call: In response look for the value of onPremisesSamAccountName attribute.

    If you are logging in to RDP session using UPN, can you confirm if you are syncing onprem UPN as Cloud UPN or syncing email as UPN? If you are syncing email as UPN you would need to configure Alternate Login ID.

    1 person found this answer helpful.

1 additional answer

Sort by: Most helpful
  1. AmanpreetSingh-MSFT 55,431 Reputation points

    @Sam Cook
    Have you synced the user to Azure AD? If you are using domain\username to connect to via RDP, can you check if the OnpremiseSamAccountName attribute in Azure AD user properties contains the SAMAccount name of the onprem user?