You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Describe the bug:
The MFA prompt to install the Authenticator app appears even though the user's MFA requirement has been disabled. This occurs during the MSAL interactive token acquisition flow. We have checked to ensure that MFA for this user has been disabled via three methods:
Navigating to per-user MFA settings, the user has multi-factor authentication set to disabled
Within Entra ID -> Overview -> Properties -> Security defaults are disabled for this user as they are targeted by a conditional access policy
Within the access controls for the conditional access policy targeting this user, the only control enforced is the requirement of an app protection policy. The user is already targeted by a valid app protection policy for the app.
To Reproduce
Steps to reproduce the behavior:
loginAndEnrollAccount() for user
Intune SDK displays prompt to restart app to apply app protection policies
App restarts
Attempt to acquire MSAL token silently
Receive interaction required error, initiate interactive token acquisition via acquireTokenInteractively()
Enter account credentials on Microsoft page that appears
MFA prompt (in attached image) appears. (Error code 50127)
Expected behavior:
Allow interactive token acquisition to proceed without requiring Authenticator app interaction.
Screenshots and logs:
Smartphone (please complete the following information):
Device: iPhone 13
OS: iOS 17.4.1
Intune App SDK for iOS (please complete the following information):
What version of the Intune SDK are you using? Are you using the latest version? -> Yes, version 19.3.1
What platform is your app based in (native, Xamarin based, Cordova, etc)? -> native
For errors during build, does the app build without Intune SDK integration? -> N/A
For errors post build, does the app launch without being Intune SDK integrated? -> N/A
Who is the customer? -> N/A
Do you see a trend with it only being reproduced on a specific device? -> Easily reproducible with test account
Additional context:
Add any other context about the problem here.
The text was updated successfully, but these errors were encountered:
Thanks for reaching out.
Kindly contact me directly at my email address priyankamodi@microsoft.com to provide additional details that might include Personally Identifiable Information (PII), which may not be suitable for public disclosure.
Describe the bug:
The MFA prompt to install the Authenticator app appears even though the user's MFA requirement has been disabled. This occurs during the MSAL interactive token acquisition flow. We have checked to ensure that MFA for this user has been disabled via three methods:
To Reproduce
Steps to reproduce the behavior:
Expected behavior:
Allow interactive token acquisition to proceed without requiring Authenticator app interaction.
Screenshots and logs:
![Screenshot 2024-05-02 at 5 18 28 PM](https://private-user-images.githubusercontent.com/38266802/327619496-eabe6b9d-5325-4dfa-a7c0-1a3c20fa18a4.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.l4ST02BIynchIv7a4NJFYmwLdCPikVnbbSZaCJ_FQKE)
Smartphone (please complete the following information):
Intune App SDK for iOS (please complete the following information):
What version of the Intune SDK are you using? Are you using the latest version? -> Yes, version 19.3.1
What platform is your app based in (native, Xamarin based, Cordova, etc)? -> native
For errors during build, does the app build without Intune SDK integration? -> N/A
For errors post build, does the app launch without being Intune SDK integrated? -> N/A
Who is the customer? -> N/A
Do you see a trend with it only being reproduced on a specific device? -> Easily reproducible with test account
Additional context:
Add any other context about the problem here.
The text was updated successfully, but these errors were encountered: