Windows-itpro-docs: Unclear how multifactor works

@JonZeolla Good question! The expert that I need to ask is on vacation, so I won't have an answer for you until after Aug 6.

Thanks. I have had some issues when going from my macOS box to an AAD-joined Win 10 machine when my account has MFA, regardless of using an app password or the regular creds that should require a second factor. When I installed the Microsoft Remote Desktop Beta app (v10.2.0) I was able to login remotely as a local account, but I noted a lack of information for my specific scenario (but I also just may be missing it, in which case I would love a pointer to the right doc(s)).

@JonZeolla I'll still check to see if there's any special consideration for MFA, but this topic isn't for your situation -- it's for connecting from a Win 10 device to a Win 10 device. These docs might be more helpful: https://docs.microsoft.com/en-us/windows-server/remote/remote-desktop-services/clients/remote-desktop-mac

Thanks @jdeckerms - yeah I reviewed the doc you linked to before opening this issue as well. Primarily what I'm asking is how a destination AAD-joined Windows 10 box is expecting to authenticate a user (after the network connectivity/client setup was verified as correct, and I wouldn't expect it matters too much whether it's macOS, Windows, etc.) when the creds are AAD w/ MFA.

I felt it made more sense to reach out on the article that more specifically discusses Azure AD as it would be more likely that I reach the right contact at Microsoft, but feel free to redirect me if you feel it's appropriate.

@JonZeolla Thanks for clarifying. Expect to hear back from me in August. :)

@JonZeolla I'm discussing your question with the product team, they'd like to know (1) what steps you followed to enable/enforce MFA, (2) which multi-factors you enabled.

I have the same issue. We need to implement MFA, but this is a problem.

I enabled MFA via the 365 Admin centre (just for myself). Multi-factors I use are Authentication phone and Authenticator app, with the default method is "Notify me through app".

We have O365 and setup MFA via the "manage multi-factor authentication" link under an individual's account by setting the MULTI-FACTOR AUTH STATUS to Enforced. I'm using the Authenticator app only, with push notifications.

I resolved this by excluding MFA from the IP address range used by the PC(s) to which I am connecting remotely, and as before, using a VPN to make the connection. This is done in the Service Settings for MFA here: https://account.activedirectory.windowsazure.com/UserManagement/MultifactorVerification.aspx?culture=en-GB&BrandContextID=O365

@jdeckerms any update on this? Do you need more information from me?

@JonZeolla I don't have any answer from the product team yet, sorry.

@jdeckerms hello, is there maybe an update regarding MFA and RDP login? I'm currently facing the same problem.

@jdeckerms Hi, I'm currently also facing the same issues with MFA and RDP login. Is there a solution available in the meantime?

@jdeckerms - Do you have any updates on this? Thanks.

@jdeckerms Do you have any update on this? Thanks.

@jdeckerms - We would like to follow up. Do you have any updates on this? Thanks.

@jdeckerms - have just set up a fresh Win 10 Pro using an Azure AD account with MFA enforced. Can't remote desktop to it with that same account. As above can you or anyone advise?

@jdeckerms - We would like to follow up. Do you have any updates on this? Thanks.

@jdeckerms please?

@officedocsbot assign @jvsam

@jvsam This issue appears to persist. Please provide any available update at your earliest convenience.

Still no update on this issue?

@jdeckerms retired from Microsoft, as is visible on her github profile page. @JonZeolla have you found more info yet? Hope to hear!

No update from me, still waiting on @microsoft

Hello @JonZeolla - I would suggest you and others facing this issue to open up a support case with Microsoft. @nam31 - Can you please guide the user how to open up a support case with Microsoft.

Opening a support case will help you to route to a correct team and will help you to fix this issue.

Thanks
Imran.

@JonZeolla Thank you for providing feedback.
The issues section of this repository is intended for product documentation issues only.
Please consider opening a product support ticket by the following link below for your problem so that it gets resolved quickly.

Windows 10 Support

Thank you.

I opened this ticket with the hopes that the documentation would add a clarification with regard to multifactor use; it may be that it's not supported, etc.