Hoping someone can help. We have been introducing MFA to our company by changing MFA status to Enabled and getting them to configure it using the ms authenticator app and the QR code.
That has been going well but the other day we had a user who all of a sudden stopped getting the 'Approve' button. We tried to new authenticator account using a new QR code but it kept failing saying it had already been used.
We disabled his MFA, deleted all existing app passwords and went in to azure ad, found the user and clicked 'revoke MFA sessions. After that we left it overnight, re-enabled his MFA hoping he would get the 'more information' window so he could reconfigure MFA however he actually got a window showing his email address, 'Enter Code' we've texted your phone and a 'verify' button.
what I don't understand is we changed his MFA to Enabled a min or so before so MA hadn't even been configured.
any help would be really appreciated