This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(41.6, 18%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVA%3C/text%3E%3C/svg%3E)
We have enabled MFA enforcement on our lighthouse but somehow all the users were receiving this error "MFA policy is misconfigured. Work with your admin to enable notification through mobile app in the policy." We have tried disabling the MFA and set them to report only but still issue is same.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 78%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESG%3C/text%3E%3C/svg%3E)
Thank you for posting this in Microsoft Q&A.
I am looking into this issue and will get back to you post my research.
Can you let us know how did you enable MFA?
Is it through Conditional access policy, per user MFA or Security defaults?
For now you can try to access this in browser with incognito mode and check if you are still prompted for MFA
Thanks for replying back to the query.
Issue has been resolved, here is how we resolved it.
For our case, Tenant A per user MFA policies were causing issues, post removing MFA restriction on Tenant A issues were resolved.
I'm glad that you were able to resolve your issue and thank you for posting your solution so that others experiencing the same thing can easily reference this! Since the Microsoft Q&A community has a policy that "[The question author cannot accept their own answer. They can only accept answers by others] (https://docs.microsoft.com/en-us/answers/support/accepted-answers#why-only-one-accepted-answer)**)", I'll repost your solution in case you'd like to "[Accept] (https://docs.microsoft.com/en-us/answers/support/accepted-answers#accepted-answer-in-a-question-thread)**)" the answer.
Issue:
MFA policy is misconfigured. Error: Work with your admin to enable notification through mobile app in the policy.
Solution:
For your case, Tenant A per user MFA policies were causing issues. post removing MFA restriction on Tenant A issues were resolved.
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.