DUO MFA - Does Not Re-prompt for Authentication when used with Azure CA
Azure keeps the DUO MFA session cookie active in the browser even when an application has timed out or has been closed and re-opened. When re-authenticing with the application the CA Policy does not call the DUO servers for new session cookie (DUO have confirmed this). I would like to control DUO Authentication session times as you can with the native Azure MFA.
In addition, I would like to see the following in azure sign-in logs:
- DUO MFA has been used
- CA Policy was triggered when DUO MFA is used