Enforce MFA for SharePoint Online Sites with Conditional Access Policies



Microsoft is previewing a capability to allow Office 365 tenants to block access to SharePoint Online sites unless accounts use multi-factor authentication. Protection is set on a per-site basis. It's part of the move to remove basic authentication from as many places in Office 365 as possible. MFA stops account compromise, so it's a good thing.



1 Reply

Neat feature - always wondered when more user actions were going to be added to CA.  No sync is a bit of a roadblock until fixed though.


According to a Microsoft session at the RSA Conference 2020, in January 2020 only 11% of enterprise Office 365 accounts were enabled for MFA

That's unbelievable!