Adaxes

Resetting User MFA, how user registers new MFA device?

0 votes

A User lost device running Microsoft Authenticator. Now user web interface login ends to MFA prompt, but I can't figure out where from a user could register a new device.

I tried resetting user MFA authentication from admin console. It tells The Microsoft Authenticator app is not activated by the user. Stil only prompt user gets is input code from authenticator app.

User belongs to security role with allowed Reset Multifactor Authentication and password reset and has enrollet to password reset.

ago by (230 points)
0

Hello,

Now user web interface login ends to MFA prompt, but I can't figure out where from a user could register a new device.

Please, provide us with a screenshot of the prompt the user faces after entering their username and password.

Also, please, provide us with a screenshot of the Multi-server environment dialog. The dialog displays how many Adaxes services you have and what their versions are. For information on how to view it, see https://www.adaxes.com/help/MultiServerEnvironment.

I tried resetting user MFA authentication from admin console. It tells The Microsoft Authenticator app is not activated by the user

Please, provide screenshot of the steps you perform including the one about activation.

You can post the screenshots here or send to us at support@adaxes.com.

ago by (295k points)
0

Hello,

cause was a user error. Service desk user tried to log in with wrong credentials and role in a tiered environment.

ago by (230 points)

1 Answer

0 votes
ago by (295k points)

Hello,

Thank you for the confirmation. In general, if you have MFA enabled for Adaxes web interface and an enrolled user loses their device, you just need to reset MFA for them. After that they can enroll with the new device on the first login. For details about the reset, have a look at section Reset authenticator app of the following tutorial: https://www.adaxes.com/help/ConfigurePasswordSelfService/#reset-authenticator-app.

Related questions

0 votes
1 answer
How to restrict users from resetting their password but only provide ability to change their password in self-service

Would like to know if we can remove the forget password link on Self-service login page or remove the ability for users to reset their password. We only want users to ... be able to change their password but not reset their password if they have forgotten it.

asked Mar 29, 2023 by Vish539 (470 points)
0 votes
1 answer
How to delete Intune mobile device?

How to delete Intune mobile device that was assigned to %fullname%​ in a business rule?

asked Mar 4, 2022 by Keonip (180 points)
0 votes
1 answer
How can I add a new user to a cloud only Entra ID licensing group?

I'm currently writing an "After User Creation" rule and I have a PowerShell script that adds the newly created, on-premises synced user to a handful of cloud ... powershell cmdlet that fails. I need to use PowerShell for the additional condtional flexibility.

asked Dec 13, 2024 by smcfarland (60 points)
0 votes
1 answer
How can I get this to trigger properly when a new user is created by script?

The rule runs but since the first name and last name are passed as parameters, I only get the sequential # as a userID without the initials.

asked Oct 24, 2024 by curtisa (330 points)
0 votes
1 answer
What is the most current way of checking if a user has MFA enabled in Azure?

We used to use a script to check if an AD user's MFA was set in Azure (Hybrid AD/AAD set up). I do not think it is relevant any longer. Is there another script that handles this or some other functionality in order to check a user's Azure MFA status?

asked Aug 23, 2024 by msheppard (660 points)
3,605 questions
3,292 answers
8,342 comments
548,405 users