Forum Discussion

Steve Hernou's avatar
Steve Hernou
Iron Contributor
Oct 09, 2019

Random MFA prompts from Universal Store Native Client

Good morning   Facing a rather bothersome issue at the moment. Our users are randomly being prompted for MFA authentication when they are not actively logging in somewhere. At first they just figu...
Azure Active Directory (AAD)
Identity Management
Michael McLaughlin's avatar
Michael McLaughlin
Icon for Microsoft rankMicrosoft
Dec 11, 2019

Folks, I'm pulling in some of my colleagues from the conditional access team and we're looking at the situation. We'll share any results we find. Steve's summary above is accurate--in the examples we've looked at, CA is triggering MFA as the policies define. 

jjthomas's avatar
jjthomas
Copper Contributor
Dec 12, 2019

I want to chime in on this thread, as we are seeing the same behavior.  (Unfortunately, our MFA configuration is not CA-based, as we have not altered it from turning it up almost 2 years ago and "forcing" MFA for everything.)  

The good part, as others mentioned, is that users are reporting an unknown authentication attempt as fraud.  The bad news is the user has no idea what is triggering it, and the logs point to the Universal Store Native Client.  

 

I look forward to possible solutions.  

 

 

Resources