This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(160, 59%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJS%3C/text%3E%3C/svg%3E)
We're looking to update and improve our MFA security settings for our Azure portal.
Objectives:
Problem:
Question:
How do we disable Azure asking for phone number as an authentication backup method? Without providing a phone number to text it won't let our users go forward with finalizing a device for MFA setup.
Potentially Important Information:
Our license type is: Azure AD Free
@J S
Thank you for your post!
When it comes to users being prompted to add a phone number, can you see if disabling the "Call to phone" and "Text message to phone" verification options help resolve your issue?
If the Per-User MFA settings don't resolve your issue, can you see if your Azure Tenant is registered for Combined Registration? If so, you should be able to set the combined security information registration experience feature to "None". For more info.
You can also check if your tenant is enabled for SSPR, since the phone number could be a required for SSPR purposes and not MFA.
When it comes to having multiple methods of authentication this should also prevent users from being accidentally locked out of your Azure Active Directory tenant due to the loss of a password, YubiKey, or access to their MS Authenticator.
Additional Links:
Unable to reset password and access authenticator app
Manage emergency access accounts in Azure AD
A user or an administrator forgot his or her password in Office 365, Azure, or Intune
I hope this helps!
If you have any other questions, please let me know.
Thank you for your time and patience throughout this issue.
----------
Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 12%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWN%3C/text%3E%3C/svg%3E)
If I turn off the phone, sms as a method, what will be the impact on users who already have this mfa configuration?
Oh wow! Both of your answers were fantastic! Thanks so much to you both.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(259.20000000000005, 57.00000000000001%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMA%3C/text%3E%3C/svg%3E)
When removing the call option the users are getting a popup/snip with both options = SMS, and CALL.
Is it possible to remove the Call option (visually - cosmetic) in the snip? and leave only SMS?
I know it is a cosmetic option but it should be possible.
