- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Subscribe to Topic
- Printer Friendly Page
Partner Center Dashboard showing 0% in MFA status with SAML IdP
I'm using a third party IdP which provides MFA for secure logins.
Everything I've read so far says that it's needed to issue a claim authenticationmethodsreferences claim (with value multipleauthn) (https://docs.microsoft.com/en-us/partner-center/partner-security-compliance)
At the SAML assertion that the IdP is issuing, there is the following attribute being sent in the assertion:
<saml2:Attribute AttributeName="http://schemas.microsoft.com/claims/authnmethodsreferences"> <saml2:AttributeValue>http://schemas.microsoft.com/claims/multipleauthn</saml2:AttributeValue> </saml2:Attribute>
Even though, the percentage remains 0%.
Do you know what is the correct attribute should be sent ?
Unfortunately support will not help getting the right configuration for a 3rd party IdP - generally we say that you need to work with the 3rd party solution provider.
See also https://docs.microsoft.com/en-us/powershell/partnercenter/test-partner-security-requirements?view=partnercenterps-2.0#additional-information & https://www.microsoftpartnercommunity.com/t5/Blog-Discussions/How-to-validate-your-solution/m-p/8315 on options and techniques to analyze the tokens.