Microsoft recently announced that they will be implementing multi-factor authentication (MFA) for all Azure users in a gradual and methodical manner to minimize customer impact. They have provided an update on the MFA requirements for Azure users and guidance for preparing systems. This change will affect all Azure users signing in to the Azure portal, Azure CLI, or Azure PowerShell, as well as those using Infrastructure as Code (IaC) tools such as Azure Developer CLI, Bicep, Terraform, and Ansible to perform CRUD operations.
The implementation will occur in two phases. In Phase 1, starting in July 2024, MFA enforcement will be rolled out gradually for Azure portal sign-ins only. This phase will not impact other Azure clients. In Phase 2, starting in early 2025, MFA enforcement at sign-in will be extended to Azure Command Line Interface (CLI), Azure PowerShell, and IaC tools. Microsoft will provide a grace period for customers needing more time to adapt.
All existing MFA methods supported in Azure will be available, including external solutions in public preview. Active Directory Federation Services and federated identity providers must comply with the MFA requirement. IT admins can track user sign-ins with and without MFA to ensure compliance.
This change aims to enhance security for Azure users by implementing MFA across different access points. It is crucial for organizations to prepare for this transition to ensure smooth operations. Microsoft has provided clear guidelines and timelines to assist users in adapting to the upcoming MFA requirements.
Article Source
https://www.neowin.net/amp/microsoft-clarifies-azure-mfa-requirements-what-you-need-to-know/
