cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Problem with supervised mode and MFA Text

Jeff Harlow
Iron Contributor

‎Aug 29 2019 01:07 PM

‎Aug 29 2019 01:07 PM

Problem with supervised mode and MFA Text

On occasion when I setup a new iPhone that is supervised, I am noticing that the MFA text never comes through and you cannot jump out of the app to go to text. Even when you choose another option and do a phone call, I cannot actually answer the phone, since the Company Portal app is in the foreground and cannot be exited.  What can  I do to fix this issue? Anyone else experienced this? 

1,360 Views
0 Likes
4 Replies
Reply
4 Replies
Intune_Support_Team

‎Nov 12 2019 12:31 PM

‎Nov 12 2019 12:31 PM

Re: Problem with supervised mode and MFA Text

Hi @Jeff Harlow, are you still experiencing this issue?

 

Could you also expand on how the devices are enrolled and configured?:

  1. Enrollment Method used
    1. DEP with/without User Affinity
    2. Apple Configurator
  2. Are you deploying a Device Restriction profile such as Single App Mode/Kiosk?

Thanks!

Intune Support Team
^MS

0 Likes
Reply
Jeff Harlow

‎Nov 13 2019 05:28 AM

‎Nov 13 2019 05:28 AM

Re: Problem with supervised mode and MFA Text

@Intune_Support_Team 

 

I am using DEP with User Affinity. I actually received a response from Microsoft stating this was not supported with the user account has MFA enabled. 

0 Likes
Reply
Intune_Support_Team

‎Nov 13 2019 04:08 PM

‎Nov 13 2019 04:08 PM

Re: Problem with supervised mode and MFA Text

Hi @Jeff Harlow, thanks for the clarification!

Today, MFA is not supported for DEP during the enrollment process as there is no way to send an MFA prompt to the device during the setup assistant.

Sorry that this isn't available yet today, and I'm sure you know that we're always improving the service. There is an existing Intune UserVoice item you may want to add your vote to: https://microsoftintune.uservoice.com/forums/291681-ideas/suggestions/17163317-mfa-doesn-t-work-with....

As a possible workaround, using the Company Portal as an authentication method may work in instances where you'd like to use MFA, prompt users who need to change their password when they first sign in, or prompt users to reset their expired passwords during enrollment.

More information can be found here: Create an Apple enrollment profile.

 

Hope this helps!
Intune Support Team

^MS

0 Likes
Reply
Jeff Harlow

‎Nov 14 2019 06:07 AM

‎Nov 14 2019 06:07 AM

Re: Problem with supervised mode and MFA Text

Actually you cannot use the Company Portal solution either when isolating it with a MFA account. The MFA text message or phone call will not be visible or answerable when the Company Portal app is open and since you cannot switch the app, it renders that solution as invalid. This has been confirmed by Intune Support. @Intune_Support_Team 

0 Likes
Reply