![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 47%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENB%3C/text%3E%3C/svg%3E)
3,285 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(89.60000000000001, 11%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
Hi @Neil B · Thank you for reaching out.
This is not yet possible. As of now, best you can do is, require MFA for unknown devices by using the custom policy sample provided here: https://github.com/azure-ad-b2c/samples/tree/master/policies/mfa-unknown-devices
If you don't want to use custom policy, you may configure Identity Protection (requires B2C Premium P2 tier) and/or configure Conditional Access Policy to require MFA when there is low/medium/high sign-in risk is detected.
Read more:
- Change your Azure AD pricing tier
- Sign-in risk
- Identity Protection and Conditional Access for Azure AD B2C
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.