How can we improve Azure Active Directory?

← Azure Active Directory

Migrating from Azure MFA Server to MFA Cloud

Need a migration method for migrating from Azure MFA Server to Azure MFA Cloud, without all our users having to re-register.

124 votes
Sign in
(thinking…)
Sign in with: Microsoft
Forgot password?
Create a password
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

Stewart Griffiths shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →
planned  ·  AdminAzure AD Team (Product Manager, Microsoft Azure) responded  · 

We are planning to provide a migration path to customers from MFA server to cloud MFA.

If you are using voice and SMS, you can already use the Authentication methods APIs to migrate the data: https://docs.microsoft.com/graph/api/resources/authenticationmethods-overview

If you are using the Authenticator app, users can enable Phone Sign-in to authenticate without passwords in the cloud: https://docs.microsoft.com/azure/active-directory/authentication/howto-authentication-passwordless-phone#azure-mfa-server

11 comments

Sign in
(thinking…)
Sign in with: Microsoft
Forgot password?
Create a password
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • Maxime Gagnon-Smith commented  ·   ·  Flag as inappropriate

    This is needed for us as well. We have over 1700 users to migrate to a mfa platform from on-premise and we will go with the solution that makes it the easiest.

  • Horgen, Anders commented  ·   ·  Flag as inappropriate

    Agree!

    It should be possible to provision / migrate the MFA profile from On-Prem to Cloud.
    This is considered as an security issue, hence it should be possible to do it if you have an Intune enrolled device and the Authenticator app on same device to ensure that it is the same owner.

  • Jason commented  ·   ·  Flag as inappropriate

    You could manually add the MFA info into each user account in Azure AD...

  • Domer, Michael commented  ·   ·  Flag as inappropriate

    I am waiting for this as well. wont move off of MFA server till i have a seamless migration. i cant bother 700 attorneys to reset MFA.

Azure Active Directory: Multi-factor Authentication

Categories

Feedback and Knowledge Base

(thinking…)
Hosted by UserVoice