One user getting MFA when in the office, none from home.
I've searched around and found nothing.
I have one user who gets multiple MFA requests when working in the office throughout the day (maybe 2 or 3 over the 8 hour period). But when they work from home on the same device nothing. It's almost as if the location services have been enabled. I looked for security risk triggers, and at location services within Azure AD but found no security triggers and nothing set up within the location services.
Any out of box ideas would be appreciated.
Have you checked the Conditional Access policies to see if that location/IP is listed as a trusted location? https://learn.microsoft.com/en-us/azure/active-directory/conditional-access/location-condition
Sign in to comment
Yes I did. Sorry that's what I was meaning by saying that nothing was configured with the location services. Conditional Access Policies are blank and there was no plan on configuring any. Also verified that the sessions tokens weren't just expiring at the same time each day (making sure she wasn't just happening to be at work). Also the user can get 2 or 3 mfa requests through the day in the office but will receive none all weekend at home.
Did you check that you don't have any per user MFA settings enabled ?
Did you also check named location ?