ADFS 4.0 | Open ID connect and MFA RRS feed

  • Question

  • Hi,

    Recently we've implemented an OpenID connection with one of our School Information Systems (SOMtoday), using application groups in ADFS 4.0.

    The next step is implementing MFA for a specific group of users. In the Web API properties I've added an access control policy, This policy requires the group U_H3O_SFNT_HW-token to use MFA. When I try to log in with an user assigned this group , I'm not getting asked for MFA.

    Applying the same access control policy to a Relaying Party Trust, I'm getting asked for MFA.

    Anyone on this?

    Wednesday, September 5, 2018 11:21 AM

All replies

  • Hi Robbert-Jan,

    We are also trying to create the openid connection with SOMtoday.
    And are missing some documentation around this connection and what is necessary to make it work.

    Could you share the settings you have made so far ?
    We also want to use the MFA option (with group).
    Perhaps we can help with the MFA bit.

    Wednesday, September 5, 2018 2:05 PM