You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/active-directory/authentication/how-to-mfa-registration-campaign.md
+12-11Lines changed: 12 additions & 11 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -7,7 +7,7 @@ ms.service: active-directory
7
7
ms.subservice: authentication
8
8
ms.custom: ignite-2022
9
9
ms.topic: conceptual
10
-
ms.date: 09/27/2023
10
+
ms.date: 09/28/2023
11
11
12
12
ms.author: justinha
13
13
author: mjsantani
@@ -134,7 +134,7 @@ Here are a few sample JSONs you can use to get started!
134
134
135
135
- Include all users
136
136
137
-
If you want to include ALL users in your tenant, [download this JSON](https://download.microsoft.com/download/1/4/E/14E6151E-C40A-42FB-9F66-D8D374D13B40/All%20Users%20Enabled.json)and paste it in Graph Explorer and run `PATCH` on the endpoint.
137
+
If you want to include ALL users in your tenant, update the following JSON example with the relevant GUIDs of your users and groups. Then paste it in Graph Explorer and run `PATCH` on the endpoint.
138
138
139
139
```json
140
140
{
@@ -158,7 +158,7 @@ Here are a few sample JSONs you can use to get started!
158
158
159
159
- Include specific users or groups of users
160
160
161
-
If you want to include certain users or groups in your tenant, [download this JSON](https://download.microsoft.com/download/1/4/E/14E6151E-C40A-42FB-9F66-D8D374D13B40/Multiple%20Includes.json) and update it with the relevant GUIDs of your users and groups. Then paste the JSON in Graph Explorer and run `PATCH` on the endpoint.
161
+
If you want to include certain users or groups in your tenant, update the following JSON example with the relevant GUIDs of your users and groups. Then paste the JSON in Graph Explorer and run `PATCH` on the endpoint.
162
162
163
163
```json
164
164
{
@@ -182,11 +182,12 @@ Here are a few sample JSONs you can use to get started!
182
182
]
183
183
}
184
184
}
185
+
}
185
186
```
186
187
187
-
- Include and exclude specific users/groups of users
188
+
- Include and exclude specific users or groups
188
189
189
-
If you want to include AND exclude certain users/groups of users in your tenant, [download this JSON](https://download.microsoft.com/download/1/4/E/14E6151E-C40A-42FB-9F66-D8D374D13B40/Multiple%20Includes%20and%20Excludes.json) and paste it in Graph Explorer and run `PATCH` on the endpoint. Enter the correct GUIDs for your users and groups.
190
+
If you want to include AND exclude certain users or groups in your tenant, update the following JSON example with the relevant GUIDs of your users and groups. Then paste it in Graph Explorer and run `PATCH` on the endpoint.
190
191
191
192
```json
192
193
{
@@ -286,13 +287,13 @@ No. The snooze duration for the prompt is a tenant-wide setting and applies to a
286
287
287
288
The feature aims to empower admins to get users set up with MFA using the Authenticator app and not passwordless phone sign-in.
288
289
289
-
**Will a user who has a 3rd party authenticator app setup see the nudge?**
290
+
**Will a user who signs in with a 3rd party authenticator app see the nudge?**
290
291
291
-
If this user doesn’t have the Authenticator app set up for push notifications and is enabled for it by policy, yes, the user will see the nudge.
292
+
Yes. If a user is enabled for the registration campaign and doesn't have Microsoft Authenticator set up for push notifications, the user is nudged to set up Authenticator.
292
293
293
-
**Will a user who has the Authenticator app setup only for TOTP codes see the nudge?**
294
+
**Will a user who has Authenticator set up only for TOTP codes see the nudge?**
294
295
295
-
Yes. If the Authenticator app is not set up for push notifications and the user is enabled for it by policy, yes, the user will see the nudge.
296
+
Yes. If a user is enabled for the registration campaign and Authenticator app isn't set up for push notifications, the user is nudged to set up push notification with Authenticator.
296
297
297
298
**If a user just went through MFA registration, are they nudged in the same sign-in session?**
298
299
@@ -316,9 +317,9 @@ Yes. If they have been scoped for the nudge using the policy.
316
317
317
318
**What if the user closes the browser?**
318
319
319
-
It's the same as snoozing. If setup is required for a user after they snoozed three times, the user will get prompted the next time they sign in.
320
+
It's the same as snoozing. If setup is required for a user after they snoozed three times, the user is prompted the next time they sign in.
320
321
321
-
**Why don’t some users see a nudge when there is a Conditional Access policy for "Register security information"?**
322
+
**Why don't some users see a nudge when there is a Conditional Access policy for "Register security information"?**
322
323
323
324
A nudge won't appear if a user is in scope for a Conditional Access policy that blocks access to the **Register security information** page.
![prmerger-automator[bot]](https://avatars.githubusercontent.com/u/22479449?v=4&size=40){kind=avatar}
0 commit comments