Forum Discussion
Surface Hub 2 - Problem with Microsoft Teams
Tristan Griffiths Thanks for that. This will work I'm sure but I don't see how this gets around the MFA requirement. Can you explain your thoughts on this?
My understanding is that we are not allowed to exclude or bypass any accounts from MFA without exception - although perhaps Microsoft will clarify this in future. This method just uses the O365 MFA trusted IP address to bypass this CA excluded account. Is this any different to just using conditional access to bypass based on location for this user? It just seems like a different method for achieving the same thing to me.
cezarcretu We still have a conditional access policy that will be enforced for any users who are not excluded so only this account is affected. The issue remains the Microsoft contractual obligation for MFA enforcement for all users.
alankinane485 does achieve the same thing as CA trusted site bypass but with the ability to use app passwords. Haven't seen (or haven't read clearly enough... more likely) that trusted sites cannot be bypassed for regular users under the partner rule change? Got a link?
We shouldn't have to wait too much longer for Microsoft to pull their finger out and release modern auth for Surface Hubs and MTRs.