- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe to Topic
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Permalink
- Report Inappropriate Content
Microsoft MFA + 3rd Party MFA in Parallel
- When changing to a 3rd part MFA provider can we make use of both Microsoft MFA and the 3rd party integration?
- If this is possible can we then define what MFA a user makes use of?
- Is there any additional configuration required from an Azure AD or Office 365 to enable us to make use of both services.
- How will this impact user experience? (When logging into the organization's Office365 portal will the user then get a dropdown to select the MFA provider?)
- If it's not possible to make use of Microsoft MFA and a 3rd part MFA provider in parallel, what would be the recommended implementation to limit the impact on the existing users? Do we disable Microsoft MFA for them and then get them migrated over?
I hope someone can help me?
Thanks in advance.
Solved! Go to Solution.
- Labels:
-
Cloud Platform
-
Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Permalink
- Report Inappropriate Content
@brmeyer you cannot use Azure MFA and third-party MFA solution for an account at the same time. Under most circumstances you are federating a domain with the third-party solution, so any authentication request for an account that is associated with that domain will be using the third-party solution. If you want to use Azure MFA, then you will need to use a cloud identity. Note that Azure MFA Server can integrate with ADFS, but that involves federation so it is similar the third-party scenario.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Permalink
- Report Inappropriate Content
@brmeyer you cannot use Azure MFA and third-party MFA solution for an account at the same time. Under most circumstances you are federating a domain with the third-party solution, so any authentication request for an account that is associated with that domain will be using the third-party solution. If you want to use Azure MFA, then you will need to use a cloud identity. Note that Azure MFA Server can integrate with ADFS, but that involves federation so it is similar the third-party scenario.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Permalink
- Report Inappropriate Content
@idwilliams thank you for the reply.
I suspected the 3rd party MFA federation to the domain will not allow both to work in parallel.
Thanks for the feedback.
