Migrating from Azure MFA Server to MFA Cloud
Need a migration method for migrating from Azure MFA Server to Azure MFA Cloud, without all our users having to re-register.

We are planning to provide a migration path to customers from MFA server to cloud MFA.
If you are using voice and SMS, you can already use the Authentication methods APIs to migrate the data: https://docs.microsoft.com/graph/api/resources/authenticationmethods-overview
If you are using the Authenticator app, users can enable Phone Sign-in to authenticate without passwords in the cloud: https://docs.microsoft.com/azure/active-directory/authentication/howto-authentication-passwordless-phone#azure-mfa-server
16 comments
-
Dimitar Dimitrov commented
And what about if we use Azure MFA Server as LDAP proxy to integrate LDAP with MFA?
Is there integration between Azure AD Domain Services LDAPS and Azure cloud-based MFA? -
Anonymous commented
Any update? We have multifactor authentication server on prem running what is the best way to migrate to azure?
-
Anonymous commented
When will this be added or completed? I am in the boat with the rest of the comments. I have users I would like to migrate to the cloud and avoid a mass redo on activations.
-
Tim Alsop commented
Currently, Azure MFA Server (or NPS server) are accessed via RADIUS API. To move to MFA Cloud, will an API be provided ?
-
Anonymous commented
Please complete this work, since it is no longer recommended for on-premise deployment. I would like to migrate my users to the cloud without a pesky activation again.
-
skatterbrainzz commented
Almost 2 years and no status update. Sounds like this has gone to sleep.
-
Maxime Gagnon-Smith commented
This is needed for us as well. We have over 1700 users to migrate to a mfa platform from on-premise and we will go with the solution that makes it the easiest.
-
Daniel Knudsen commented
The export should by default not be able to include the MFA part of the configuration, as of wich you will need to configure http://ak.ms/mfasetup, configure your App and delete the old authenticator entry.
-
Horgen, Anders commented
Agree!
It should be possible to provision / migrate the MFA profile from On-Prem to Cloud.
This is considered as an security issue, hence it should be possible to do it if you have an Intune enrolled device and the Authenticator app on same device to ensure that it is the same owner. -
Jason commented
You could manually add the MFA info into each user account in Azure AD...
-
Mike commented
Yes please! I'm looking for this as well
-
Domer, Michael commented
I am waiting for this as well. wont move off of MFA server till i have a seamless migration. i cant bother 700 attorneys to reset MFA.
-
Matt Dubay commented
Can anyone refer me to the article for this procedure?
-
Steve commented
Any news on this?
-
John Nowotny commented
This will be critical for us once MFA Cloud has feature parity (getting closer!)
-
René Posthumus commented
We also need this sort of tool to be able to do a low impact migration to Azure MFA !