Reminder from our Cybersecurity expert Sergey Zhuikov:
Microsoft is rolling out important updates regarding multifactor authentication (MFA) for all Azure users. These changes are crucial to enhancing security and protecting your data more effectively. Here’s a breakdown of the upcoming phases and the steps you need to take:
Starting today, Microsoft will begin rolling out additional tenant-level security measures to require MFA. This is a part of the Secure Future Initiative, aimed at strengthening security and preventing data breaches.
The enforcement of the MFA requirement at Azure sign-in will be rolled out in two phases:
-
Phase 1: Starting in July 2024, enforcement for MFA at sign-in for the Azure portal will only roll out gradually to all tenants. This phase will not impact any other Azure clients, such as Azure CLI, Azure PowerShell, and IaC tools.
-
Phase 2: Starting in early 2025, enforcement for MFA at sign-in for Azure Command Line Interface (CLI), Azure PowerShell, and Infrastructure as Code (IaC) tools will gradually roll out to all tenants.
Microsoft will notify global admins about the expected enforcement date of your tenant(s) by email and through Azure Service Notifications 60 days in advance.
MFA is a security method that requires users to provide two or more pieces of evidence to verify their identity before accessing a service or a resource. It adds an extra layer of protection to the standard username and password authentication, making it harder for attackers to compromise accounts and steal data.
Steps for Admins:
-
Enroll in MFA: Register for MFA through your Azure portal. Make sure to have a secondary authentication method ready (e.g., mobile app, SMS).
-
Verify MFA Setup: Test your MFA setup to ensure it works seamlessly.
-
Stay Informed: Keep up with any updates or additional requirements by following Microsoft’s announcements.
For more detailed information, you can refer to these helpful resources:
We understand that these changes may raise questions or concerns. If you have any questions or need further assistance, feel free to reach out to our experts Vladimir Lopatin and Sergey Zhuikov:
We’re here to help you navigate these changes smoothly! Stay secure and proactive!
