This July, Azure teams will begin rolling out additional tenant-level security measures to require multi-factor authentication (MFA). Establishing this security baseline at the tenant level puts in p...
Updated May 17, 2024
Version 4.0Blog Post
I've just gone to sign-in to the Azure Portal for a Visual Studio Azure subscription and received the following notification:
It was posted above that Microsoft support had stated that:
“MS will communicate a formal process around exceptions in the coming weeks, and that we have heard the feedback on customers needing more time, and the Azure Portal enforcement will not start in July. Updated announcement will be published early next week with more details.”
So is this NOT the case and this is still being enforced, is this notification related to the enforcement of MFA on the Azure Portal?
Also, is enabling Security Defaults the method that MFA is planning to be applied by?
If so, this presents all sorts of questions as Security Defaults does more than just enforce MFA and it also enforces MFA on not only the Azure Portal but Azure PowerShell and CLI.
Enforcing Security Defaults on existing tenants could have many very impactful implications.
If a MFA is already enforced via Condition Access in a Tenant and includes access to the Azure Portal then Security Defaults is not required, if this is the case then I would hope that it wouldn't be enabled.
Please can you clarify the above points.
Best regards
Owain