Oct 14 2021
07:35 AM
- last edited on
Jan 14 2022
03:24 PM
by
TechCommunityAP
Oct 14 2021
07:35 AM
- last edited on
Jan 14 2022
03:24 PM
by
TechCommunityAP
As it stands right now, if I include guest users in my MFA requirements (via Conditional Access), they are required to set up MFA for our tenant specifically, in addition to the MFA they have for their own tenant. What I was expecting to have happen when I added a guest was that our MFA requirement made sure that they had MFA enabled on their account, not that it would have a separate MFA policy unique to our tenant. Is there a way to tweak this? If they've already proved their identity with two forms of authentication, why should they need to prove it again with a third? But I definitely want to make sure that guest users have MFA somewhere along the authentication chain, which presumably means that I can't remove them from the CA policy.
Oct 14 2021 09:59 AM
Oct 15 2021 04:19 AM
@Vasil Michev Wow - we're just starting a project activating MFA for 10,000+ Guests and we suspect it will be chaos since the guests are not really supported by us but use our apps. But if you tell us change is coming here and we should wait - please tell us a liiiitle bit more? ;)
Oct 15 2021 08:08 AM
Mar 08 2022 03:04 AM
SolutionMar 08 2022 03:04 AM
Solution