I'm currently working with Entra ID at my job, and we unfortunately rely on Microsoft Authenticator. I've encountered a frustrating issue where a user can successfully add their enterprise account to the app, but on the computer side, it times out. This results in the app showing the account, but Windows 11 insists that no authenticator is detected, prompting for setup again. The catch is, when I attempt to set it up again, it doesn't work since the account is already on the phone. The only workaround I've found is to reset all authentication methods for that user in the Entra ID control panel, which is quite cumbersome to do each time a new user is added. Has anyone else run into this issue, and do you have suggestions on how to prevent it?
2 Answers
Thanks for the tip! I just want to avoid these steps for every new user. It feels like a hassle to manage, especially when it should be straightforward.
You don't actually need to reset all authentication methods. Try going to Entra > Users > MFA per User, select the username, and change the MFA settings. You can accept all options in the sidebar that appears. This should allow the account to reactivate its MFA without needing a full reset. Just note that this method depends on the permissions you have within the tenant. Also, the desync could be occurring because of internet connection issues—sometimes even minimal packet loss can cause problems with the app.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures