Event details

Find out how to make Windows and Microsoft 365 update management easier than ever with Windows Autopatch! Members of the product and engineering teams will be answering your questions live and help...
Heather_Poulsen
Updated Dec 27, 2024
AMA
sfarnik's avatar
sfarnik
Brass Contributor
Jun 01, 2022
Why would there be the need to disable MFA and Conditional Access for the Microsoft Accounts ? That's the worst idea ever, and most likely THE reason we would not enroll to Autopatch service.
  • Harman_Thind's avatar
    Harman_Thind
    Icon for Microsoft rankMicrosoft
    Jun 15, 2022

    Hi sfarnik 

     

    Thanks for your feedback on this item. For CA/MFA policies that target all users, Windows Autopatch currently requires our service accounts to be excluded from these policies to not prevent Windows Autopatch from connecting to your tenant. You can find more details here: Conditional access policies.

     

    In our current solution, we have key controls in place for usage as well as audited sign-ins. Windows Autopatch maintains a separate conditional access policies to restrict access to these accounts. However, we are working on a solution to move away from Service Accounts. Stay tuned for an update on this!

  • McMuckle's avatar
    McMuckle
    Copper Contributor
    Jun 15, 2022
    Our policy to block legacy auth got picked up by the readiness tool, but it didn't take issue with our CA that forces MFA, so also interested to hear if this (MFA) is true
    • JasonS's avatar
      JasonS
      Copper Contributor
      Jun 15, 2022
      Please can someone confirm regarding needing to disable MFA ? Is this true??