Forum Discussion
Guest MFA - require register phone as well as authenticator app
Hi all So I am aware of cross-tenant MFA settings and we are testing this feature, but it does not help in all scenarios e.g. guest has AAD but doesn't have MFA enforced in their home tenant. ...
Hi halbot,
As far as my knowledge goes, there isn't such a possibility that you can configure a (default) authentication method order for a user. Instead, the user itself should do this.
However, when we talk about forcing an authentication method, there are some possibilities.
You can pre-populate authentication methods for a (guest) user. Many blogs on the internet show you how to configure this. If you wish to do it without scripts, you can manually add the authentication method when creating/inviting a guest account under the authentication methods section when selecting the user.
I hope this helps!
As far as my knowledge goes, there isn't such a possibility that you can configure a (default) authentication method order for a user. Instead, the user itself should do this.
However, when we talk about forcing an authentication method, there are some possibilities.
You can pre-populate authentication methods for a (guest) user. Many blogs on the internet show you how to configure this. If you wish to do it without scripts, you can manually add the authentication method when creating/inviting a guest account under the authentication methods section when selecting the user.
I hope this helps!
If you require 2 methods In SSPR, it will force the user to register both Authenticator and Phone number for SMS. That's how it works for normal users at least and I think this would apply to Azure AD Guest users too. However that cause all users to be forced to register two methods ju which might not what you want.
I also think Microsoft lack some features here. You should be able to ask/encourage them to register more methods but maybe not force them.
I also think Microsoft lack some features here. You should be able to ask/encourage them to register more methods but maybe not force them.