I have Azure security defaults enabled for my organization. I have several external guest users who are part of another organization that also enforces MFA.
Guest users are reporting that they are being forced to go through two stages of MFA when signing in to access my organization's resources - one from their home organization and a second one from my own organization.
Is this expected behaviour? It doesn't make sense to me that guest users would need to provide two separate MFA credentials to authenticate on an external organization.
