Some additonal informations:
- Windows Hello is disabled in the Intune "Windows-Enrollment" Settings
- Windows Hello is also disabled by a Intune "Configuration Policy"
But still the user has to setup an MFA device or SMS verification.
This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
I recently migrated my client to O365 and we are discovering device enrollment via Intune.
When onboarding a new device and the user logs in for the first time, the user needs to configure an MFA device or leave their mobile number. We do not want to rollout the MFA immediately, but later on. Is there any way to disable this requirement for an MFA registration when logging into a newly onboarded device?
Bests,
Aljoscha
Some additonal informations:
But still the user has to setup an MFA device or SMS verification.
Hi, Only if you disable the MFA requirement.
You could also use the temporary access pass:
then the user can register MFA .
Why the need to not require MFA here? If you aren't ready for MFA, then really you should disable it for now (Security Defaults or conditional access policy that is enforcing it)