cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

ADFS 2016 & Multiple MFA providers

Chris Kincaid
Copper Contributor

‎Feb 17 2020 03:59 PM - last edited on ‎Feb 10 2023 02:30 PM by

‎Feb 17 2020 03:59 PM - last edited on ‎Feb 10 2023 02:30 PM by

ADFS 2016 & Multiple MFA providers

Currently running ADFS 2016 with Duo as our MFA provider. We are planning to move to O365 MFA, and would like to do it in a phased migration. A quick test shows that if both providers are selected in the configuration, the user is prompted to select which provider to use.  Two questions, 1) is there a way to customize this selection screen? and 2) is there a way to define which provider a user is taken to based on group membership in AD? Thanks. 

4,418 Views
0 Likes
2 Replies
Reply
2 Replies
Vasil Michev

‎Feb 18 2020 08:57 AM

‎Feb 18 2020 08:57 AM

Re: ADFS 2016 & Multiple MFA providers

Depends, you might be able to force a specific method via claims rules (see for example here: https://dirteam.com/sander/2017/01/16/forcing-the-use-of-a-specific-azure-multi-factor-authenticatio...), but if multiple providers use the same method, you'll have to edit the aspx/js files.

0 Likes
Reply
Carl_C_Raymond

‎Apr 18 2020 12:24 AM

‎Apr 18 2020 12:24 AM

Re: ADFS 2016 & Multiple MFA providers

@Chris KincaidThe best way I've found is to upgrade to ADFS 2019, raise the FBL, and then follow advice from https://docs.microsoft.com/answers/questions/18531/adfs-2019-multiple-mfa-provider-selection-on-rp.h...

 

0 Likes
Reply