Forum Discussion
Lync.exe failing MFA
Recently we implemented MFA and all the sudden i get loads of failed logins with Browser identified as Lync.exe with the failure "User did not pass the MFA challenge (non interactive)."
Clearly Lync is the old version of Skype for Business. If this is failing wouldn't the person be having issues with their Lync not working? I would have thought so but no one is complaining.
8 Replies
Hi
We also have legacy auth in the AAD sign-ins for lync.exe for one of our client ad for almost all their users.
S4b is on-prem (not sure if in hybrid mode yet) + Mailboxes in Exchange Online (hybrid mode with a few service mailboxes on the on-prem Exchange server) + ADFS for authentication.
We want to enable MFA using Conditional access policies but we first need to get rid of these legacy authentications from lync.exe.
Anybody can confirm that going through the following procedure will enable Modern Auth for lync.exe without impacting the services?
https://docs.microsoft.com/en-us/microsoft-365/enterprise/configure-skype-for-business-for-hybrid-modern-authentication?view=o365-worldwideAnything else to consider?
Thank you for you help.
- Have you checked this registry settings?
https://docs.microsoft.com/en-us/skypeforbusiness/troubleshoot/hybrid-exchange-integration/allowadalfornonlyncindependentoflync-setting- Great! It seems to work! Really appreciate you input here Thijs 🙂
- They might not be using S4B.
Have you enabled modern auth?- Yes we did have Lync but have since moved to S4B. the desktop guys say everyone has been updated but maybe that’s not the case.
Simple question, does Lync support modern auth?- Last time I checked, the S4B client still presents itself as lync.exe in the AAD sign-in logs.
S4B support modern auth.
