HomeWinBuzzer NewsMicrosoft Authenticator Enhances Security with New MFA Policies for Admin Portals

Microsoft Authenticator Enhances Security with New MFA Policies for Admin Portals

Microsoft enforces robust security upgrades, mandating multifactor authentication for administrators accessing crucial platforms to safeguard against unauthorized access and data breaches.


has announced a major security upgrade for its administrative portals. The company is set to introduce Conditional Access policies, necessitating multifactor authentication (MFA) for administrators accessing crucial platforms such as Microsoft Entra, Microsoft 365, Microsoft Exchange, and Azure admin centers. This move aims to bolster protection against unauthorized access and .

Rollout and Policy Management

The new policies will not be enforced immediately. Instead, they will be added to eligible tenants' environments in a ‘report-only' mode starting from next week. Admins will be granted a 90-day period to review and optionally activate these policies. If no action is taken, the policies will be turned on by default after this period. Administrators possessing the Conditional Access Administrator role within their organization will be able to manage these new settings—including toggling policy states and adding exclusions for specific user identities—from the admin center.

Future Security Outlook

Alex Weinert, Microsoft's Vice President for Identity Security, acknowledges the criticality of MFA in securing user access, pointing to studies that show MFA can significantly reduce the risk of account takeovers. Microsoft aspires to achieve complete adoption of MFA, with plans to leverage machine learning for insights, recommendations, and the automated deployment of robust security controls. This initiative underpins ongoing efforts in the industry to strengthen defenses across various platforms.

Microsoft advises that emergency access or “break-glass” accounts—a fail-safe measure enabling privileged access in case normal methods fail—should be exempted from these Conditional Access policies, mirroring existing security best practices.

Concluding Points and Related Security News

Furthermore, this security initiative is part of a broader trend in the tech industry to prioritize and enforce stronger authentication methods. For example, Amazon has declared its intent to make MFA mandatory for AWS ‘root' accounts by mid-2024, and various platforms have encountered challenges related to MFA, such as the W3LL phishing kit bypassing MFA to compromise Microsoft 365 accounts.

The mandatory MFA enforcement for administrators by Microsoft represents a proactive step toward securing critical infrastructures and sensitive data. With continually evolving, this change underscores the increasing importance of robust security measures within digital environments.

This step also ties into other Microsoft Authenticator news this week, where the company is streamlining MFA on the service, as well as adding more measures to stop hackers. The app, which helps users access their accounts by generating codes or sending push notifications, has a new feature that detects and blocks high-risk sign-in requests. The feature works in the background and does not affect the user experience. The app will not send notifications if the request is from an unfamiliar location or other suspicious factors.

Luke Jones
Luke Jones
Luke has been writing about all things tech for more than five years. He is following Microsoft closely to bring you the latest news about Windows, Office, Azure, Skype, HoloLens and all the rest of their products.

Recent News