Forum Discussion
Solved
MFA, Can not change from SMS to Authenticator app
Hello, I have an issue with MFA within my tenant. We have been using SMS based MFA for some time now. We would like to move to the Microsoft Authenticator App for MFA. But for some reason, when ...
- Hi,
I went and did some more research on the Azure admin center. Found out that in the "Security" section -> "Manage" -> "Authentication Methods" -> Microsoft Authenticator was turned off.
After enabling it, I can now change the default sign-in method.
Thanks for your help!
Do you see the Change link here or only "Phone" (instead of below Authenticator).
https://mysignins.microsoft.com/security-info
What makes me wonder is "these free security defaults allow registration and use of Azure AD Multi-Factor Authentication using only the Microsoft Authenticator app using notifications."
Thinking you might hit a bug or something. Perhaps raise a case with Microsoft?
Hi,
I went and did some more research on the Azure admin center. Found out that in the "Security" section -> "Manage" -> "Authentication Methods" -> Microsoft Authenticator was turned off.
After enabling it, I can now change the default sign-in method.
Thanks for your help!
I went and did some more research on the Azure admin center. Found out that in the "Security" section -> "Manage" -> "Authentication Methods" -> Microsoft Authenticator was turned off.
After enabling it, I can now change the default sign-in method.
Thanks for your help!
- Great. No worries. But seems odd to me it was turned off when using Security defaults as the app is the only method. I mean, you didn't have to do this on your other tenants right? I will probably do a test later on to see the outcome.
- Yes, you are correct. This was the only tenant having this issue. Others have worked fine. Bit odd, like you said.
- Just tried with a tenant already using Security defaults, that is I turned it off and also disabled the Authenticator method to see if anything changed in the Authentication methods settings when I turned on Security defaults again. But no. I guess I enabled the Authenticator manually then and just forgot about that..