From my understanding there are three ways to enable MFA:
1) User or O365 MFA
2) Conditional Access
3) Azure AD Identity Protection MFA
If Conditional Access MFA is enabled and Azure AD Identity Protection MFA is enabled for users, would that cause a conflict? Are you only supposed to enable one method of MFA in an environment?