Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,560 questions
Disable global MFA for a specific Application (client) ID that requires ROPC
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(32, 71%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELA%3C/text%3E%3C/svg%3E)
Luis Alves
1
Reputation point
My organization has configured the MFA for all applications (globally). Which is great as it improves overall security.
But how can it be disabled only for an Application (client) which is legacy and requires Resource Owner Password Credentials (ROPC) flow?
regards
{count} votes
-
James Hamil 21,851 Reputation points Microsoft Employee2020-10-29T19:08:03.707+00:00 Hi! Have you looked at this document? It details conditional access policies. You'll need to create one and select ROPC for your client application. Please let me know if I can help with anything else!
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 36%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
Martin1011 1 Reputation point2020-11-02T07:14:59.467+00:00 I already thought this would require a separate conditional access policy for the application, but how do I choose ROPC for this application? I do not find the point where I configure it in the policy.
Sign in to comment