Is it possible to allow MFA registration only in a work profile on a managed phone

%3CLINGO-SUB%20id%3D%22lingo-sub-2553078%22%20slang%3D%22en-US%22%3EIs%20it%20possible%20to%20allow%20MFA%20registration%20only%20in%20a%20work%20profile%20on%20a%20managed%20phone%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2553078%22%20slang%3D%22en-US%22%3E%3CP%3EHello%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI'm%20currently%20rolling%20out%20MDM%20via%20Endpoint%20Manager%20and%20also%20enforcing%20compliance%20policies%20using%20conditional%20access.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20would%20like%20to%20allow%20MFA%20registration%20only%20in%20work%20profiles%2C%20so%20that%20users%20can%20only%20register%20MFA%20(for%20Passwordless%20sign%20in)%20on%20the%20Microsoft%20Authenticator%20app%20in%20their%20work%20profile.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EDoes%20anyone%20have%20experience%20with%20this%2C%20or%20is%20this%20currently%20even%20possible%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EBrS%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-2553078%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3ECloud%20Security%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3ECompliance%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EConditional%20Access%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EMultifactor%20Authentication%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Occasional Contributor

Hello,

 

I'm currently rolling out MDM via Endpoint Manager and also enforcing compliance policies using conditional access.

 

I would like to allow MFA registration only in work profiles, so that users can only register MFA (for Passwordless sign in) on the Microsoft Authenticator app in their work profile.

 

Does anyone have experience with this, or is this currently even possible?

 

BrS

0 Replies