Hero Banner

Multi-Factor Authentication (MFA)

Learn and ask questions on how to implement MFA

Level 1 Contributor

Security Defaults & MFA rollout has *broken* our integration

Hi @idwilliams  and all,


We use the secure app model to make calls to Partner Center API to create and provision customer tenants. Since Partner Center API lacks several needed endpoints we are forced to call Graph API for some things. This involves obtaining an access token from MSFT for the customer tenant user, using the refresh token we obtained in our secure app.


Since MSFT began rolling out Security Defaults this flow has broken.


The customer tenants created in the partner tenant by the Partner Center API call have Security Defaults turned on by default. Therefore when we try to obtain the access token we get an MFA required error. Turning off SD manually resolves the condition.


How do we prevent SD being turned on by default? And/or, how do we programmatically turn it off?




- nick