× Welcome to the Centrify Community! We are rolling out product name changes — click here to learn more.

Using the Centrify Mobile App for MFA without MDM

Using the Centrify Mobile App for MFA without MDM

By Centrify Advisor IV ‎12-15-2016 10:23 AM

There are some situations where you want to provide access to the Centrify mobile app or use the Centrify Mobile Authenticator for Multi Factor Authentication (MFA), but not enforce the Mobile Device Management (MDM) settings.

1) You don't wish to enforce MDM on personally owned devices.

2) You have an existing MDM solution in place and don't wish to replace it. 




To turn off Mobile Device Management click on Policies

Select the Default Policy. This will disable MDM for all users in your environment. 


Screen Shot 2016-12-15 at 10.08.52 AM.png


-> Mobile Device Policies -> Device Management Settings.

Set "Use the Centrify Identity Platform for mobile device management (default yes)" to "No" 


Screen Shot 2016-12-15 at 9.26.26 AM.png

Save the changes.


Users will be able to download the Centrify application to their mobile device and log in to the app with their Active Directory credentials.


The Mobile Device Managment features will not be downloaded to their device and will not be enforced, but they can use the Centrify Mobile app. 


The device will show up in the user's list of devices with a limited set of remote management features. 


Mobile device registered without MDM

 Screen Shot 2016-12-15 at 9.21.33 AM.png<


Mobile device registered with MDM

Screen Shot 2016-12-15 at 10.20.40 AM.png




The Centrify Mobile Authenticator app will work as expected for MFA.


Mobile Auth.png






By Centrify Advisor III
on ‎02-09-2017 11:39 AM

This should also work if your device is already managed by another MDM solution.


If you follow the steps above, the MDM enrollment profile will not downloaded and installed.

Showing results for 
Search instead for 
Do you mean 

Community Control Panel