question

32billablehours-9406 avatar image
0 Votes"
32billablehours-9406 asked vipulsparsh-MSFT answered

Microsoft Azure MFA and SSPR

I am looking to change the Security Questions that we have enabled for users when using MFA. The plan is to delete some of the existing ones and replace them with a much smaller subset of questions.

I am a little worried about the end user experience, what happens once we remove Security Questions and put in new ones, and how can we enforce the users that have Security Questions to reregister using the new questions? Is there a easy work flow for that scenario?

The users would still have an alternate way since they are all required to register at least 2 forms for MFA.

Thanks,

azure-ad-multi-factor-authenticationazure-ad-sspr
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

vipulsparsh-MSFT avatar image
0 Votes"
vipulsparsh-MSFT answered

@32billablehours-9406 Thanks for reaching out and apologies for delay.

If you change the security questions, and if it is a mandatory option (under methods available to users) like 2 methods required and 1 of them is security question then the users will not be able to reset the password and will see this error when they try to reset the password :

They will again need to register for the new set of security questions at :
147284-image.png




Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.





image.png (27.7 KiB)
image.png (89.8 KiB)
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.