Intermittent AVD Host Pool Login issues with WhfB endpoint, SSO, Entra ID Auth & MFA via Cond. Acc.

I have just now had this issue occur on my account and I have more information...

This occurred logging into (only one of) my Host Pools whilst I was on the Corporate network (via a VPN connection) - so I should not get prompted for MFA (as we have a Cond Access policy for all Apps to require MFA if not on a trusted network). I repeatedly got the "Just a Moment" screen and the "initiating/securing connection dialog box) stuck in a loop. When I looked at the Host Pool VM - my user was showing as connected but in a Pending state.

But, what I then did, was to shut that VM down (to clear my session), and then disconnected from the VPN and tried to connect off of the corporate network - this time it succeeded and I could login. I will note, that I was not prompted for MFA (I think because we have a grace period on MFA and don't get prompted every time, if the user selects to "remain logged in" when prompted.)

After that, I could re-connect to the corporate network via VPN and then connect successfully from there too.

So - it seems that it is something to do with the MFA / Token - perhaps?