0 votes

A User lost device running Microsoft Authenticator. Now user web interface login ends to MFA prompt, but I can't figure out where from a user could register a new device.

I tried resetting user MFA authentication from admin console. It tells The Microsoft Authenticator app is not activated by the user. Stil only prompt user gets is input code from authenticator app.

User belongs to security role with allowed Reset Multifactor Authentication and password reset and has enrollet to password reset.

by (230 points)
0

Hello,

Now user web interface login ends to MFA prompt, but I can't figure out where from a user could register a new device.

Please, provide us with a screenshot of the prompt the user faces after entering their username and password.

Also, please, provide us with a screenshot of the Multi-server environment dialog. The dialog displays how many Adaxes services you have and what their versions are. For information on how to view it, see https://www.adaxes.com/help/MultiServerEnvironment.

I tried resetting user MFA authentication from admin console. It tells The Microsoft Authenticator app is not activated by the user

Please, provide screenshot of the steps you perform including the one about activation.

You can post the screenshots here or send to us at support@adaxes.com.

0

Hello,

cause was a user error. Service desk user tried to log in with wrong credentials and role in a tiered environment.

1 Answer

0 votes
by (298k points)

Hello,

Thank you for the confirmation. In general, if you have MFA enabled for Adaxes web interface and an enrolled user loses their device, you just need to reset MFA for them. After that they can enroll with the new device on the first login. For details about the reset, have a look at section Reset authenticator app of the following tutorial: https://www.adaxes.com/help/ConfigurePasswordSelfService/#reset-authenticator-app.

Related questions

0 votes
1 answer

We are in process of implementing the enforcement of MFA everywhere and would like to add in the deprovision process that we revoke all MFA sessions for that user.

asked Feb 7 by slehne90 (20 points)
0 votes
1 answer

Would like to know if we can remove the forget password link on Self-service login page or remove the ability for users to reset their password. We only want users to ... be able to change their password but not reset their password if they have forgotten it.

asked Mar 29, 2023 by Vish539 (500 points)
0 votes
1 answer

How to delete Intune mobile device that was assigned to %fullname%​ in a business rule?

asked Mar 4, 2022 by Keonip (180 points)
0 votes
1 answer

I'm currently writing an "After User Creation" rule and I have a PowerShell script that adds the newly created, on-premises synced user to a handful of cloud ... powershell cmdlet that fails. I need to use PowerShell for the additional condtional flexibility.

asked Dec 13, 2024 by smcfarland (60 points)
0 votes
1 answer

The rule runs but since the first name and last name are passed as parameters, I only get the sequential # as a userID without the initials.

asked Oct 24, 2024 by curtisa (330 points)
3,628 questions
3,315 answers
8,392 comments
548,715 users