Skip to end of metadata
Go to start of metadata

You are viewing an old version of this content. View the current version.

Compare with Current View Version History

Version 1 Next »


When a user is setting up, or if there is suspicious activity, they can block their account by declining the MFA request.


  • When setting up, user may accidentally deny their own set up attempt.  This blocks their account and they will no longer be able to set up MFA.
  • To find out if they have blocked themselves, go here:


1) Start at Azure Directory and click on Security                             2. On the following Menu, select MFA                              3. Select Block/Unblock Users


image2022-3-27_22-14-21.png                                        image2022-3-27_22-15-18.png                            image2022-3-27_22-16-3.png

You will now have a list of all user's that have blocked their accounts by denying an MFA log in attempt.  We currently have no access to unblock them, and the ticket must be sent to ITaP Collaboration as a work impaired Incident ticket.  Placing them on the MFA Exempt list does not override the MFA requirement even as a temporary workaround.  You can also just use this link to go directly to the MFA blocked users list: https://portal.azure.com/#blade/Microsoft_AAD_IAM/MultifactorAuthenticationMenuBlade/BlockedUsers/fromProviders/

image2022-3-27_22-16-47.png







  • No labels

0 Comments

You are not logged in. Any changes you make will be marked as anonymous. You may want to Log In if you already have an account.