Hero Banner

Multi-Factor Authentication (MFA)

Learn and ask questions on how to implement MFA

Reply
Visitor 1

Partner Center Dashboard showing 0% in MFA status with SAML IdP

I'm using a third party IdP which provides MFA for secure logins.

Everything I've read so far says that it's needed to issue a claim authenticationmethodsreferences claim (with value multipleauthn) (https://docs.microsoft.com/en-us/partner-center/partner-security-compliance)

 

At the SAML assertion that the IdP is issuing,  there is the following attribute being sent in the assertion:

<saml2:Attribute AttributeName="http://schemas.microsoft.com/claims/authnmethodsreferences">
	<saml2:AttributeValue>http://schemas.microsoft.com/claims/multipleauthn</saml2:AttributeValue>
</saml2:Attribute>

Even though, the percentage remains 0%.  

Do you know what is the correct attribute should be sent ?

Thanks!

Dan

 

1 REPLY 1
Microsoft

Unfortunately support will not help getting the right configuration for a 3rd party IdP - generally we say that you need to work with the 3rd party solution provider.

 

See also https://docs.microsoft.com/en-us/powershell/partnercenter/test-partner-security-requirements?view=partnercenterps-2.0#additional-informationhttps://www.microsoftpartnercommunity.com/t5/Blog-Discussions/How-to-validate-your-solution/m-p/8315 on options and techniques to analyze the tokens. 

Kind regards,
Janosch