Accounts in Azure AD that have Azure Multi-Factor Authentication (MFA) enabled, are subject to these Azure MFA Account Lockout settings:
https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-mfasettings#account-lockout