SharePoint/OneDrive external sharing with MFA required

Iron Contributor

Dear community,

 

I have followed this guide to enable the external sharing.

Collaborate with guests on a document (IT Admins) | Microsoft Learn

 

It is working fine and external guests will use the One-Time code experience when accessing the file.

 

However, I like to step up and require guest to register so next time it will be required to use MFA to sign in. I followed the following guide to set it up.

Require MFA for guest users with Conditional Access - Microsoft Entra ID | Microsoft Learn

It is not working so far as the guest user continue to access the shared resource using One-time code.

My thinking is that the CAP doc does not match my tenant. For example, in the Doc, it says:
Under Assignments, select Users or workload identities.

  1. Under Include, select All guest and external users

My tenant doesn't have it. Under Assignment, it shows "Guest or external users" with six identities. So I selected all of them.

Also, I think this CAP will only work if the guest account is in the tenant. I have checked my "Identity Governance" blade and it says "No guest account".

What am I missing?


Thanks all!

nhtkid

wangjueliang_0-1721308798233.png

 


 

0 Replies