Update MFA registration links and instructions#8096
Update MFA registration links and instructions#8096ChristianWeisse wants to merge 1 commit intoMicrosoftDocs:mainfrom
Conversation
updating links for Azure MFA proofup page replacing legacy endpoint https://account.activedirectory.windowsazure.com/Proofup.aspx with recommended endpoint aka.ms/mfasetup update to role requirements for Azure MFA Client configuration. Application Admin is not enough (ICM 666354843)
ChristianWeisse
requested review from
robinharwood
and removed request for
a team
|
@ChristianWeisse : Thanks for your contribution! The author(s) and reviewer(s) have been notified to review your proposed change. |
prmerger-automator
bot
added
ad-fs/subsvc
Change sent to author
windows-server/svc
labels
|
Learn Build status updates of commit f6706a1: 💡 Validation status: suggestions
WindowsServerDocs/identity/ad-fs/operations/configure-ad-fs-and-azure-mfa.md
For more details, please refer to the build report. Note: Your PR may contain errors or warnings or suggestions unrelated to the files you changed. This happens when external dependencies like GitHub alias, Microsoft alias, cross repo links are updated. Please use these instructions to resolve them. |
|
@robinharwood, @Xelu86 #label:"aq-pr-triaged" |
prmerger-automator
bot
added
the
aq-pr-triaged
There was a problem hiding this comment.
Pull Request Overview
This PR updates the AD FS and Azure MFA configuration documentation to reflect current URLs, prerequisites, and best practices. The changes modernize outdated references and improve clarity.
- Updated legacy Azure MFA setup URLs to the current
https://aka.ms/mfasetupshortlink - Modernized prerequisites to include Windows Server 2016 or later and Microsoft Graph PowerShell
- Improved formatting and clarity in the Azure Government cloud configuration section
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
| - Enterprise administrator credentials to configure the AD FS farm for Microsoft Entra multifactor authentication. | ||
| - You'll need either an account that has the [Application Administrator](/entra/identity/role-based-access-control/permissions-reference#cloud-application-administrator) role on your instance of Microsoft Entra ID to configure it by using PowerShell. | ||
| - [Microsoft Graph PowerShell Module](/powershell/microsoftgraph/installation?view=graph-powershell-1.0). | ||
| - Active Directory Users must be synchronized with the Entra ID Tenant (multiple tenants are not supported) |
There was a problem hiding this comment.
Missing 'Microsoft' before 'Entra ID'. The product name should be 'Microsoft Entra ID' for consistency with other references in the document.
| - Active Directory Users must be synchronized with the Entra ID Tenant (multiple tenants are not supported) | |
| - Active Directory Users must be synchronized with the Microsoft Entra ID Tenant (multiple tenants are not supported) |
|
|
||
| //Provide a message and redirect to Azure AD MFA Registration Url | ||
| var mfaRegisterUrl = "https://account.activedirectory.windowsazure.com/proofup.aspx?proofup=1&whr=" + domain_hint; | ||
| var mfaRegisterUrl = "https://aka.ms/mfasetup?domain_hint=" + domain_hint; |
There was a problem hiding this comment.
The URL parameter format is incorrect. The original URL used 'whr=' parameter, but this change uses 'domain_hint=' without a '&' separator after the base URL. It should be 'https://aka.ms/mfasetup?whr=' to maintain the same parameter pattern, or if domain_hint is the correct parameter for the new URL, there should be documentation confirming this change in behavior.
| var mfaRegisterUrl = "https://aka.ms/mfasetup?domain_hint=" + domain_hint; | |
| var mfaRegisterUrl = "https://aka.ms/mfasetup?whr=" + domain_hint; |
5 participants
updating links for Azure MFA proofup page
replacing legacy endpoint https://account.activedirectory.windowsazure.com/Proofup.aspx with recommended endpoint
aka.ms/mfasetup
update to role requirements for Azure MFA Client configuration. Application Admin is not enough (ICM 666354843)