How to Add and Configure External MFA Application in GateKeeper for Microsoft Entra ID (Copy)

Log in to GateKeeper Hub, open SSO Management, click Add Application then select Microsoft Entra to begin setup and click Next.

Add A Unique Display Name and Enter Valid Extra ID Domain and click on validate and then Sign in as a tenant administrator to confirm you have authority to configure external authentication for this Azure AD tenant

Next, Assign the policy and Assignments to the application, then click Save. A popup will open with the details needed to configure External MFA in Microsoft Entra ID

Open the Microsoft Entra portal, navigate to Authentication methods, click Add External MFA, and enter the required details from GateKeeper and then click Save.

Then open Conditional Access in Microsoft Entra ID, create a new policy, give it a name, assign the users or groups it should apply to, include the target resources based on your organization’s requirements, select Require multifactor authentication under Grant access, then enable the policy and Create.

After saving the policy, it will apply to the selected users or groups and target applications; when users access the application, Conditional Access is enforced, and for MFA, Microsoft Entra ID redirects them to GateKeeper.