Oct 21 2022 09:13 AM
Microsoft recommends creating a policy that requires MFA when accessing the Azure administration portal (link). For this to work, the cloud app "Microsoft Azure Management" must be specified in the included scope.
However, the documentation does not give any indication on whether or not the various Microsoft 365 administration centers (e.g., SharePoint admin center, Exchange Admin Center, Teams Admin Center, Security center, Compliance center, etc.) would be impacted by this.
Should additional rules be created for Microsoft 365 administrative centers or should they be considered "Microsoft Azure Management"? If anyone has a Microsoft documented source on this that would be immensely appreciated.
Oct 23 2022 07:42 AM
SolutionOct 24 2022 05:36 AM