Hello everyone,
Today, we’ll focus on a commonly encountered yet often overlooked issue: receiving prompts even though Multi-Factor Authentication (MFA) has been disabled. For many of us, we understand the critical importance of MFA for security. However, sometimes users continue to receive prompts despite MFA being disabled. How does this happen, and what should we do?
Firstly, we need to ensure that the MFA feature has indeed been disabled. Then, we can try to understand why users are still receiving prompts by following these steps:
Check the Security Defaults
Navigate to the Entra ID ( https://entra.microsoft.com ). Click on Properties tab menu in the middle of the screen. Then scroll down to the end. Check Security defaults option whether enabled. If it’s enable this force mfa registration prompts to users.
Check the SSPR
Self Service Password Reset is a feature that allows user to reset their own password. To make this possible, users must complete the mfa registration procedure. Thus they can proof their ID when the password reset time has come. So, you need to check whether SSPR is enabled from Entra ID Admin Center>>Protection>>Password Reset
Remember, security should always be our top priority. That’s why don’t disable these features just because of the user habits. Try to explain why they need to use this extra authentication method and hot it’s valuable.
Wishing you all healthy and secure days ahead!
