Sep 26 2022 01:57 PM - edited Sep 27 2022 06:08 AM
Hi,
In our 365 tenant we started with using multifactor authentication per user and we applied Azure AD Multi-Factor Authentication for all users.
Subsequently, we created conditional access to impose the use of multi-factor authentication for all for all users.
To create conditional access, we used an Azure AD Premium license which was assigned to only the administrator account.
All other accounts do not have an Azure AD Premium license, they use office 365 business or standard accounts.
My questions are :
Is it necessary to assign an Azure AD Premium license for each user?
Is it correct to keep Azure MFA and Conditional Access running at the same time?
Regards
Sep 26 2022 02:48 PM
Sep 26 2022 11:17 PM
@MohAbidi you need P1 license for every users if you also want to have conditional access .
Conditional access is very critical in today environment to establish a foundation pillar for Zero trust environment .
You can enable MFA even with free edition but it comes with limited functionality and the below table provides what level of details you achieve with each license specifically on MFA
The below article specifically compares licenses w.r.t MFA Azure AD Multi-Factor Authentication versions and consumption plans - Microsoft Entra | Microsoft Le...