Forum Discussion
MFA Shows Disabled, But Being Used
When I visit Azure Active Directory -> Users -> Multi-Factor Authentication, our initial accounts show "Multi-Factor Auth Status" as "Disabled", but we are seeing MFA prompts. I find it confusing th...
Our tenant was created well before Oct 2019, but I did check that anyway. Those are the steps that I followed to verify that we currently have the managed security defaults set to off when I sent the first message. 🙂 Thanks for verifying that I took the steps though. I should have notated that in my first message.
wannapolkallama Any luck with this. I have a similar situation. Everything is turned off, yet still getting the MFA prompt
Hi,
I had the same problem. I already had disabled the security default settings.
I solved the problem with deleting the saved information.
This means:
- Go to the "Multi-Factor authentication"-Page (https://account.activedirectory.windowsazure.com/UserManagement/MultifactorVerification.aspx?BrandContextID=O365)
- Select the user and click "Manage user settings" on the link on the right side
- In the new popup, select "Require selected users to provide contact methods again". This will remove the saved settings, also the MFA-Settings of the user.
- After this, the user can login, but has to provide the security info (phone and alternative mail address) again.
Afterwards, the login in a incognito window was possible without asking for MFA.
We are having this issue with a new tenant.
All users have MFA Disabled and Enable Security defaults are also set to No, yet as I am adding each account to Access work or school on new PC I get prompted to setup MFA. I just click Next and then close the window. It's a pain, but the account is successfully added and credentials are used to open O365 etc.
