32 votesunder review · 4 comments · Azure Active Directory » PowerShell · Flag idea as inappropriate… · Admin →
1,286 votes247 comments · Azure Active Directory » Multi-factor Authentication · Flag idea as inappropriate… · Admin →
This feature is now on the roadmap. The MFA team is planning to adjust admin roles or create a new role that will allow delegation of MFA registration and credentials to an admin role.
An error occurred while saving the commentClaudia Wilson commented
Just so everyone knows, there is a different PIM role that works, Authentication admin. You do have to Powershell it however if you aren't global. I believe this makes the Require user reregister MFA work also in the azure portal. not sure though. I attached the script we use to do so if this helps anyone.
To note, this also adds the user to a group attached to our sign in risk policy. Hope this helps someone :)