Thanks for the feedback. We’ve been reviewing this to improve the first logon experience, will update the status of this suggestion when we finalize the plan
RaviDavid Hart commented
If you enable SSPR access from the GINA login screen on Windows 10, your users can reset their passwords when they're expired prior to logon
67 votes16 comments · Azure Active Directory » Multi-factor Authentication · Flag idea as inappropriate… · Admin →David Hart commented
This can be easily implemented by having a conditional access policy that enforces MFA, tied to an Azure AD Security Group.
Turn on AAD Self Service Group Management for that group, and allow users to request to join it.
Thanks for your feedback. This is currently under review, we will update the status when we finalize the schedule
3 votesDavid Hart shared this idea ·