Hi,
I discovered an issue wherein if a user is assigned an Intune's Device Configuration Profile Wifi (using the Wifi Template), our Helpdesk staff who has Authentication Administrator role couldn't revoke MFA Session or Require re-register MFA in Azure for non-admin users. To fix it, I have to give the Helpdesk the "Privileged Authentication Administrator" role.
This started happening when I created the wifi profile and assigning users. Clearly, this is the cause of the issue but I don't understand the relation of it with MFA.
Is this a bug or someone could please explain the relationship or why this is happening? Thank you.
][1]