M365 MFA for RDG - Temporary Bypass Policy

MFA for RDG - Temporary Bypass Policy

If your organization is using Azure MFA for your RD gateway, you will lock yourself out by forgetting your phone at home. The only way to get in besides retrieving the forgotten device (or setting up a new one temporarily), is to get a bypass put in.

You must call in to the helpdesk to get the bypass put in. However, there are conditions that need to be mt for the bypass.

Two conditions are required for bypass:

  1. Approval required from the POC on file.
    1. Have the support tech contact the POC on file for a bypass approval - in writing.
  2. The date to re-enable MFA on your forgotten device, must be scheduled in advance, the time is not to exceed 24hours.
    1. MFA will be re-enabled by the helpdesk at EOD or at the lates the following morning.

How did we do?

Microsoft MFA for Remote Desktop Gateway

Change your RD Gateway URL (Mac)

Contact