I have exactly same situation as above. After setting options to "acceptIfMfaDoneByFederatedIdp", google 2SV successful but azure keeps asking for its own MFA.

so it seems like azure does not know whether or not the login session went through google 2-step verification successfully