Forum Discussion
Not being prompted for MFA on Outlook 365 desktop, even with Modern Auth enabled?
I am still being prompted to use app passwords for my Windows 10 Business desktop version of Outlook (Office 365 version) even though I am running it on Windows 10 Business (Azure AD Joined), from an Azure AD user profile.
I've enabled a Conditional Access policy to enable MFA for Modern Authentication apps but I'm still never prompted for Passwordless Signin MFA when I launch Outlook.
I do get the Passwordless Signin when I log into Outlook web.
Any ideas on why I'm not being prompted for MFA when launching my native Windows desktop apps?
7 Replies
Modern auth needs to be enabled server-side first, and while this should now be true for all tenants, I'd suggest you verify just in case. Also, client side it can be disabled via GPO/reg keys, so cover that as well.
Modern authentication is definitely enabled on the backend.
What other things should I be checking to identify why my desktop apps don't get prompted for 2FA?
I already gave you the list of things to check, if you mean the actual keys, this article lists them: https://docs.microsoft.com/en-us/exchange/troubleshoot/modern-authentication/modern-authentication-configuration
The best tool to use in troubleshooting is Fiddler, or anything else that can capture a network trace. But at this point, you can just show us what exactly you are seeing in Outlook, for example when configuring a new profile.
