I am trying to enforce MFA for all users in our tenant when they login via a specific azure application. This specific application uses azure identity to authenticate the user to their web application.
I have created a policy for all the users and for this specific app to require MFA.
But when users authenicate this app to log in to the web application it doesn't ask for the MFA, it redirects back to the web app after authenticate with username and password.
I have reviewed the sign-ins for the users and it seems the conditional policy is not applied.
However I tried by replacing this app with built-in Microsoft application. (Microsoft Azure Management) And when I log in to the Azure portal it asked for MFA. When I enable the policy for all apps it asks for the MFA, but not when specifically select the particular app.
Is there anything to configure with the application or am I doing anything wrong when setting up the conditional access policy?