Blog Post

Microsoft 365 Blog
7 MIN READ

Announcing mandatory multifactor authentication for the Microsoft 365 admin center

Samer_Baroudi's avatar
Samer_Baroudi
Icon for Microsoft rankMicrosoft
Nov 11, 2024

Learn how multifactor authentication (MFA) can protect your organization and how to prepare for the upcoming Microsoft 365 admin center MFA requirement 

  Microsoft is committed to continuously enhancing security for all our users and customer organizations. One of the pillars of the Microsoft Secure Future Initiative is to protect identities and s...
Updated Jan 06, 2026
Version 2.0
microsoft 365
microsoft 365 admin center
JonKilner's avatar
JonKilner
Brass Contributor
Jan 13, 2025

Hi v-vasulkars , interesting. I've not seen information in any blog posts or articles that reference the MFA is scoped to URLs as well as App IDs. Do you have a full list of the URLs that are going to be targeted by the MFA, rather than the App IDs.

We're desperately trying to understand the scope of which users are going to be affected by this. We have ran impact reports and tried to create a report-only CA policy to understand the impact, neither of which would allow us to see URLs.

 

 

v-vasulkars's avatar
v-vasulkars
Former Employee
Jan 14, 2025

Hi @JonKilner, The URL's impacted are 'portal.office.com/adminportal/home' , 'admin.cloud.microsoft', or 'admin.microsoft.com'. Note that 'portal.office.com/account' is the 'My Account' page and is not in-scope. 

The users that are impacted are notified through the Message center. 
Thanks!