How can we improve Azure Active Directory?

← Azure Active Directory

Migrating from Azure MFA Server to MFA Cloud

Need a migration method for migrating from Azure MFA Server to Azure MFA Cloud, without all our users having to re-register.

141 votes
Sign in
(thinking…)
Sign in with: Microsoft
Forgot password?
Create a password
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

Stewart Griffiths shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →
planned  ·  AdminAzure AD Team (Product Manager, Microsoft Azure) responded  · 

We are planning to provide a migration path to customers from MFA server to cloud MFA.

If you are using voice and SMS, you can already use the Authentication methods APIs to migrate the data: https://docs.microsoft.com/graph/api/resources/authenticationmethods-overview

If you are using the Authenticator app, users can enable Phone Sign-in to authenticate without passwords in the cloud: https://docs.microsoft.com/azure/active-directory/authentication/howto-authentication-passwordless-phone#azure-mfa-server

16 comments

Sign in
(thinking…)
Sign in with: Microsoft
Forgot password?
Create a password
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • Dimitar Dimitrov commented  ·   ·  Flag as inappropriate

    And what about if we use Azure MFA Server as LDAP proxy to integrate LDAP with MFA?
    Is there integration between Azure AD Domain Services LDAPS and Azure cloud-based MFA?

  • Anonymous commented  ·   ·  Flag as inappropriate

    Any update? We have multifactor authentication server on prem running what is the best way to migrate to azure?

  • Anonymous commented  ·   ·  Flag as inappropriate

    When will this be added or completed? I am in the boat with the rest of the comments. I have users I would like to migrate to the cloud and avoid a mass redo on activations.

  • Tim Alsop commented  ·   ·  Flag as inappropriate

    Currently, Azure MFA Server (or NPS server) are accessed via RADIUS API. To move to MFA Cloud, will an API be provided ?

  • Anonymous commented  ·   ·  Flag as inappropriate

    Please complete this work, since it is no longer recommended for on-premise deployment. I would like to migrate my users to the cloud without a pesky activation again.

  • Maxime Gagnon-Smith commented  ·   ·  Flag as inappropriate

    This is needed for us as well. We have over 1700 users to migrate to a mfa platform from on-premise and we will go with the solution that makes it the easiest.

  • Horgen, Anders commented  ·   ·  Flag as inappropriate

    Agree!

    It should be possible to provision / migrate the MFA profile from On-Prem to Cloud.
    This is considered as an security issue, hence it should be possible to do it if you have an Intune enrolled device and the Authenticator app on same device to ensure that it is the same owner.

  • Jason commented  ·   ·  Flag as inappropriate

    You could manually add the MFA info into each user account in Azure AD...

  • Domer, Michael commented  ·   ·  Flag as inappropriate

    I am waiting for this as well. wont move off of MFA server till i have a seamless migration. i cant bother 700 attorneys to reset MFA.

Azure Active Directory: Multi-factor Authentication

Categories

Feedback and Knowledge Base

(thinking…)
Hosted by UserVoice