Currently we trying to reset MFA in Azure B2C through Microsoft Graph API. The idea is to delete existing phone number in authentication methods, that at the next login user would be prompt for provide new one. We are using standard built-in user-flows for user login / registration.
The problem is that B2C during MFA registration stores phone number in authentication methods without space between country prefix and phone number (so in Azure Portal it’s +11112223333, and should be +1 1112223333). MFA works fine, but because of this:
we are not able to query for phone number with Graph Api (https://docs.microsoft.com/en-us/graph/api/authentication-list-phonemethods?view=graph-rest-beta&tabs=http ) – GET returns empty array;
we are not able to delete phone number with Graph Api (https://docs.microsoft.com/en-us/graph/api/phoneauthenticationmethod-delete?view=graph-rest-beta&tabs=http) – DELETE returns 404;
One workaround is POST new fake number with correct format through Graph Api and then delete it. Do you know is there better way to reset MFA or force B2C MFA to store phone number in correct format?