The verification result (success or denial), and the reason if it was denied, is stored with the authentication data. The optional fields can be configured in Multi-Factor Authentication Server. Multi-Factor Authentication Server Name.Device Token (when using mobile app authentication).Phone Number (when using a voice call or SMS authentication).Unique ID (either user name or on-premises Multi-Factor Authentication Server ID).The following data fields are included in two-step verification logs: When authentication requests are sent to the cloud service, data is collected for authentication and usage reports. Communication between Multi-Factor Authentication Server and the Multi-Factor Authentication cloud service uses Secure Sockets Layer (SSL) or Transport Layer Security (TLS) over port 443 outbound. When the user performs two-step verification, Multi-Factor Authentication Server sends data to the Azure AD Multi-Factor Authentication cloud service for authentication. No persistent user data is stored in the cloud.
With Multi-Factor Authentication Server, user data is only stored on the on-premises servers.
