Looking to user Powershell to unblock a user within Azure MFA if they get blocked. I can Enable, Enforce, and Disable via Powershell but I am not finding those commands for PowerShell.
View best response
Can you clarify what exactly mean by unblock? There is no block feature in Azure MFA, there is one when using MFA Server. And no, there isn't a way to configure it via PowerShell.
The other thing that comes in mind is identities blocked by the Azure Identity Protection?
Sure, We are having users get blocked when they accidentally press Deny from the Microsoft Authenticator App.
To unblock them we have to open Azure Active Directory Admin Center or (https://aad.portal.azure.com/#blade/Microsoft_AAD_IAM/MultifactorAuthenticationMenuBlade/Overview/fr...) open MFA / Under Settings open Block/Unblock users, then unblock that account.
We have a Hybrid domain and normally we can enable, Enforce, Disable from https://account.activedirectory.windowsazure.com/UserManagement/MultifactorVerification.aspx But Unblock / Block is NOT an option there.
I have a Powershell Script to Enable, Enforce, Disable, but I do not see anything on unblocking a user.
Interesting, I've never seen deny result in a block when using Azure MFA. I just did a quick test with my account and it doesn't result in blocking. Perhaps I'm missing something...
In any case, the unblock action can only be done via the portal UI afaik.
Thanks, Frustrating, But thanks... @Vasil Michev
When any MFA enabled Microsoft or Office 365 user has tried login in with incorrect password then the user account gets blocked and can be unblocked using below URL.
Even if you have basic free subscription a Global Admin can Login here an unblock the user account.
Hope that answers the question however any unanswered queries about MFA or Office 365 are welcome.