1,280 votes246 comments · Azure Active Directory » Multi-factor Authentication · Flag idea as inappropriate… · Admin →
This feature is now on the roadmap. The MFA team is planning to adjust admin roles or create a new role that will allow delegation of MFA registration and credentials to an admin role.
An error occurred while saving the commentSumeet Kumar commented
I think the Azure AD Authentication Administrator has the privilege to revoke MFA, require re-register MFA and reset user password. However, enabling/disabling MFA is still a job only a Global Administrator can do. Why can't the Authentication Administrator have this right?