Plugin Author
Marco
(@qlcvea)
Hello,
users that log in through this plugin skip the WordPress login system. This is intentional.
2FA can be enforced through Azure AD / Entra ID.
Thread Starter
Dima
(@dimastorozhuk)
i mean 2fa , MFA по Microsoft Entra ID. This module does not enforce/enable MFA, even if the policy which enforces MfA applied to the MS Entra app. It is because there are wrong scope. If someone need a right scope – i can share patch, but it will work with bedrock/composer. This changes must be applied to the module by maintainer.
Plugin Author
Marco
(@qlcvea)
Hello,
I have just run a test with my development AAD tenant, which has security defaults enabled, and I was correctly asked for 2FA.
If a user is already signed in on the AAD side they will not be asked to log in again, which is expected.
It may be possible to enforce additional restrictions with Conditional Access, if you have access to it.
