Hi experts,

I have been doing some revision of MFA in our organization and noticed something that I cant figure out.

I have the MS managed CA created “Multifactor authentication for per-user multifactor authentication users“, and it is in ENABLED mode… All fine… no issues… However, I have noticed that it is covering only 50 users out of 65 total/licensed user in our organization. The CA is applied to “Users/Groups” which is not possible to edit (only for “exclude” option can be modified).

Wondering – why… how the users were selected? Why I have users missing there? For example, my account is not there either.

PS: I am using the LEGACY MFA…. not migrated to MS Entra yet.

I plan to migrate to MS Entra MFA these days so would like to understand the above so that all users have MFA enabled and REQUIRED after migration

Thank you.

​Hi experts, I have been doing some revision of MFA in our organization and noticed something that I cant figure out.I have the MS managed CA created “Multifactor authentication for per-user multifactor authentication users”, and it is in ENABLED mode… All fine… no issues… However, I have noticed that it is covering only 50 users out of 65 total/licensed user in our organization. The CA is applied to “Users/Groups” which is not possible to edit (only for “exclude” option can be modified).  Wondering – why… how the users were selected? Why I have users missing there? For example, my account is not there either. PS: I am using the LEGACY MFA…. not migrated to MS Entra yet. I plan to migrate to MS Entra MFA these days so would like to understand the above so that all users have MFA enabled and REQUIRED after migration Thank you.  Read More

​