question

Radje avatar image
0 Votes"
Radje asked Radje answered

ADFS Azure MFA - Proofup redirect doesnt work in EDGE

Hello,

i setup MFA on my ADFS server. I modify Adfs theme for proofup page: https://github.com/MicrosoftDocs/windowsserverdocs/blob/master/WindowsServerDocs/identity/ad-fs/operations/configure-ad-fs-and-azure-mfa.md .

In chrome it works just fine, but in Microsoft EDGE users are getting this: Error details: The selected authentication method is not available. Choose another authentication method or contact your system administrator for details.

My WIASupportedUserAgents are:

("MSIE 6.0", "MSIE 7.0; Windows NT", "MSIE 8.0", "MSIE 9.0", "MSIE 10.0; Windows NT 6", "Windows NT 6.3; Trident/7.0", "Windows NT 6.3; Win64; x64; Trident/7.0", "Windows NT 6.3; WOW64; Trident/7.0", "Windows NT 6.2; Trident/7.0", "Windows NT 6.2; Win64; x64; Trident/7.0", "Windows NT 6.2; WOW64; Trident/7.0", "Windows NT 6.1; Trident/7.0", "Windows NT 6.1; Win64; x64; Trident/7.0", "Windows NT 6.1; WOW64; Trident/7.0","Windows NT 10.0; WOW64; Trident/7.0", "MSIPC", "Windows Rights Management Client", "=~Windows\s*NT.Edg.")


Where is the problem, thanks a lot guys

azure-ad-connectadfsazure-ad-multi-factor-authentication
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Givary-MSFT avatar image
0 Votes"
Givary-MSFT answered Givary-MSFT commented

Hi @Radje:

Reviewed your WIASupportedUserAgents output, noticed there could be issue with user agent for Edge browser.

Refer to this article https://docs.microsoft.com/en-us/windows-server/identity/ad-fs/operations/configure-ad-fs-browser-wia and update the user agent as it is mentioned here.

If the above article doesn't help, can you help me with the output & screenshot of this command from your ADFS server. "Get-AdfsProperties | select -ExpandProperty WiaSupportedUserAgents"




· 3
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hello @GirishVaryani:

Sadly It doesnt help:

161104-image.png



0 Votes 0 ·
image.png (129.2 KiB)

Iam using Windows Server 2019.

0 Votes 0 ·

@Radje:

change onload.json:

if (errorMessage.innerHTML.indexOf(mfaSecondFactorErr) >= 0) {

change to

if (errorMessage.innerHTML.search("The selected authentication method is not available")) {

If you have any other questions, please let me know.
Thank you for your time and patience throughout this issue.


Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.

0 Votes 0 ·
Radje avatar image
0 Votes"
Radje answered

Proofup wasnt initiazed, because the error code did not meet the condition. I had to change json to "The selected authentication method is not available".

I found this there: https://www.reddit.com/r/sysadmin/comments/lq5djs/adfs_and_azure_mfa_onloadjs_not_catching_proof_up/

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.