A new version of the Azure MFA Server ( is available for download here https://aka.ms/mfadownload?download=mfa&clcid=0x9

This new version includes few improvements, like:

  • Improved interaction with AD Sync
  • Support for TLS 1.2 for LDAP, User Portal to Web Service SDK, and SChannel replication
  • Accessibility improvements to User Portal, MFA Server management, and installation


  • Compliance with General Data Protection Regulation
    • The GDPR tool (MultiFactorAuthGdpr.exe) is available in the C:\Program Files\Multi-Factor Authentication Server folder to
    • You can have some details about the GDPR compliance here https://aka.ms/mfaserverprivacy
    • The use of this tool is simple: MultiFactorAuthGdpr.exe export <username> or MultiFactorAuthGdpr.exe delete <username> to export a JSON file or delete the user details (the download is saved in the current folder – aka the folder from where you are running the tool)
    • The tool must be executed from a command line as a local administrator or a Phone Factor admin
    • This functionality can be included within a global GDPR solution using the web service DSK (GetUserGdpr or DeleteUserGdpr operations)


  • Registration experience on mobile
    • This does not require anymore the Mobile App and is using the Phone Factor URL (same as for Azure MFA) – by the way there is even no updated version of the Mobile App with this updated version




  • When upgrading you need to upgrade first the MFA Server and Web Service SDK
  • After the upgrade or install is completed, check the IIS Application Pool associated with the User portal as it may have been changed to use the Web Service SDK application pool. If so you will get the following error “Error communicating with the local Multi-Factor Authentication service. Please contact your administrator.”; you just need to change the application pool using the IIS console by using the Basic Settings options for the user portal web site and change back the user portal application pool