Problem

Office 365 is requiring users to perform MFA after authenticating via PortalGuard. 

Solution

Update the 'Identity Claims' within the Office 365 relying party.

1. Navigate to the PortalGuard server and open the Identity Provider Configuration Editor.

2. Edit the Office 365 relying party.

3. Navigate to the Identity Claims tab.

4. Click 'Create' to add the following identity claim:

   • Open

     

     Name: 'multiauthn'

   • Schema Type: 'http://schemas.microsoft.com/claims/authnmethodsreferences'

   • Value Type: 'Formatted String'

   • Composite Value Type: 'http://schemas.microsoft.com/claims/multipleauthn'

5. Click the 'Save' button.

6. From the main screen of the Identity Provider Configuration Editor, click the 'Apply to Identity Provider' button. 

7. Click the 'Sync' button.