Key points
- Microsoft is enforcing mandatory Multifactor Authentication (MFA) for Azure Public Cloud sign-ins to provide the best protection against cyber threats.
- Phase 2 of MFA enforcement will start on October 1, 2025, and will be applied gradually across Azure tenants through Azure Policy.
- Customers need to enable MFA for their users by October 1, 2025, to ensure they can perform resource management actions, and can postpone the enforcement date if needed.
As a reporter, I have been following the latest developments in cyber security, and I can tell you that Microsoft is taking a major step to protect its customers. With cyberattacks becoming more frequent and sophisticated, safeguarding digital assets has never been more critical. According to Microsoft research, Multifactor Authentication (MFA) can block more than 99.2% of account compromise attacks, making it one of the most effective security measures available.
In August 2024, Azure announced that it would implement mandatory MFA for Azure Public Cloud sign-ins. This move is part of Microsoft’s commitment to enhance security for all customers, and it’s a significant step towards a more secure future. The enforcement of MFA has been rolled out in phases, with Phase 1 focusing on Azure Portal, Microsoft Entra admin center, and Intune admin center sign-ins.
Now, Azure is announcing the start of Phase 2 MFA enforcement, which will begin on October 1, 2025. This phase will focus on enforcing MFA for users performing Azure resource management operations through any client, including the Azure Command-Line Interface (CLI), Azure PowerShell, and REST APIs. Customers need to take action to prepare for this change, including enabling MFA for their users and updating their Azure CLI and PowerShell clients.
Microsoft has sent notices to all Microsoft Entra Global Administrators to notify them of the start date of enforcement and how to prepare. Customers can assign built-in Azure Policy definitions to understand the potential impact of the enforcement and can postpone the enforcement date if needed. It’s essential for customers to take this step seriously and enable MFA for their users by October 1, 2025, to ensure they can perform resource management actions.
The enforcement of MFA is a critical step in protecting against cyber threats, and Microsoft is committed to providing the best protection for its customers. With Phase 2 of MFA enforcement starting soon, customers need to take action to prepare and ensure they are ready for this change. By enabling MFA and updating their clients, customers can help protect their digital assets and ensure a more secure future. Microsoft will continue to provide updates and guidance to help customers navigate this change, and we will be keeping a close eye on developments as they unfold.
Read the rest: Source Link
You might also like: Why Choose Azure Managed Applications for Your Business & How to download Azure Data Studio.
Remember to like our facebook and our twitter @WindowsMode for a chance to win a free Surface every month.