Editing an application for Microsoft Entra ID external MFA

To connect PingOne as the external authentication provider for multi-factor authentication (MFA) in Microsoft Entra ID, you must configure an OpenID Connect (OIDC) application to handle authentication requests from Entra ID. When a user attempts to access an application configured in Entra, the user authenticates first with Entra ID and then is redirected to a third-party MFA provider, such as PingOne, for second-factor authentication.

You must also add a Microsoft identity provider (IdP). Learn more about configuring Entra ID as the IdP in Setting up PingOne SSO and PingID as the external MFA provider for Microsoft Entra ID.