Either way they receive the above error and they are unable to verify their account. I understand this happens with outlook.com but this is not that. We are not using MFA provided by Microsoft but by OKTA, additionally they are using an InPrivate session.
Any ideas? and can this be turned off? using an OWA policy? or some other method, we already have MFA provided as mentioned.