Forum Discussion
Unblock MFA
Looking to user Powershell to unblock a user within Azure MFA if they get blocked. I can Enable, Enforce, and Disable via Powershell but I am not finding those commands for PowerShell.
Interesting, I've never seen deny result in a block when using Azure MFA. I just did a quick test with my account and it doesn't result in blocking. Perhaps I'm missing something...
In any case, the unblock action can only be done via the portal UI afaik.
12 Replies
Can you clarify what exactly mean by unblock? There is no block feature in Azure MFA, there is one when using MFA Server. And no, there isn't a way to configure it via PowerShell.
The other thing that comes in mind is identities blocked by the Azure Identity Protection?
Sure, We are having users get blocked when they accidentally press Deny from the Microsoft Authenticator App.
To unblock them we have to open Azure Active Directory Admin Center or (https://aad.portal.azure.com/#blade/Microsoft_AAD_IAM/MultifactorAuthenticationMenuBlade/Overview/fromProviders//hasMFALicense/) open MFA / Under Settings open Block/Unblock users, then unblock that account.
We have a Hybrid domain and normally we can enable, Enforce, Disable from https://account.activedirectory.windowsazure.com/UserManagement/MultifactorVerification.aspxBut Unblock / Block is NOT an option there.
I have a Powershell Script to Enable, Enforce, Disable, but I do not see anything on unblocking a user.
