Aug 29 2019 01:07 PM
On occasion when I setup a new iPhone that is supervised, I am noticing that the MFA text never comes through and you cannot jump out of the app to go to text. Even when you choose another option and do a phone call, I cannot actually answer the phone, since the Company Portal app is in the foreground and cannot be exited. What can I do to fix this issue? Anyone else experienced this?
Nov 12 2019 12:31 PM
Hi @Jeff Harlow, are you still experiencing this issue?
Could you also expand on how the devices are enrolled and configured?:
Thanks!
Intune Support Team
^MS
Nov 13 2019 05:28 AM
I am using DEP with User Affinity. I actually received a response from Microsoft stating this was not supported with the user account has MFA enabled.
Nov 13 2019 04:08 PM
Hi @Jeff Harlow, thanks for the clarification!
Today, MFA is not supported for DEP during the enrollment process as there is no way to send an MFA prompt to the device during the setup assistant.
Sorry that this isn't available yet today, and I'm sure you know that we're always improving the service. There is an existing Intune UserVoice item you may want to add your vote to: https://microsoftintune.uservoice.com/forums/291681-ideas/suggestions/17163317-mfa-doesn-t-work-with....
As a possible workaround, using the Company Portal as an authentication method may work in instances where you'd like to use MFA, prompt users who need to change their password when they first sign in, or prompt users to reset their expired passwords during enrollment.
More information can be found here: Create an Apple enrollment profile.
Hope this helps!
Intune Support Team
^MS
Nov 14 2019 06:07 AM
Actually you cannot use the Company Portal solution either when isolating it with a MFA account. The MFA text message or phone call will not be visible or answerable when the Company Portal app is open and since you cannot switch the app, it renders that solution as invalid. This has been confirmed by Intune Support. @Intune_Support_Team