Forum Discussion
Azure AD Sign-in to Azure VMs fails due to enforced MFA (I think)?
Hi, I have an Azure AD Tenant (Free) and I have connected an Azure VM to it, but find that I cannot login with my Azure AD account (with VM Administrator RBAC role) from my home Win10 machine (th...
No, not really, I want "Security Defaults" enabled for security, but also to still be able to login to my Azure AD joined VM with my Azure AD user accounts.
With the Azure AD Free tenant, it is not possible to turn off MFA for the Windows Sign-In cloud app (listed as a work-around) as there is no access to CA policies.
Also Windows Hello with PIN should allow the MFA requirement to be passed shouldn't it - but I am not seeing this?
And, why is it if I disconnect the Azure VM from Azure AD and then re-join it manually from within Windows, I can then login successfully with the account that I could not login with before with Security Defaults still enabled on the Azure AD tenant properties?
With the Azure AD Free tenant, it is not possible to turn off MFA for the Windows Sign-In cloud app (listed as a work-around) as there is no access to CA policies.
Also Windows Hello with PIN should allow the MFA requirement to be passed shouldn't it - but I am not seeing this?
And, why is it if I disconnect the Azure VM from Azure AD and then re-join it manually from within Windows, I can then login successfully with the account that I could not login with before with Security Defaults still enabled on the Azure AD tenant properties?
sounds like Microsoft is saying you need P1 or higher to work with anything related to azure ad joined resources. You have the same problem with AVD and there is no workaround other disabling default security settings
