Microsoft to enforce MFA for Azure resource management in October

Source: BleepingComputer

Author: Sergiu Gatlan

URL: https://www.bleepingcomputer.com/news/microsoft/microsoft-to-enforce-mfa-for-azure-resource-management-in-october/

ONE SENTENCE SUMMARY:

Starting October 2025, Microsoft will enforce multi-factor authentication for Azure to enhance security against unauthorized access attempts.

MAIN POINTS:

1. Microsoft enforces MFA for Azure resource management starting October 2025.
2. Enforcement aims to protect Azure clients from unauthorized access.
3. MFA required for Azure CLI, PowerShell, SDKs, and APIs.
4. Users should upgrade Azure CLI to version 2.76+ and PowerShell to 14.3+.
5. Global administrators can delay compliance until July 2026.
6. Enforcement applies to all Azure tenants in public cloud.
7. Affected operations include Create, Update, and Delete.
8. Monitoring available via authentication methods registration report.
9. 99.99% of MFA-enabled accounts resist hacking.
10. GitHub also enacts 2FA for active developers from January 2024.

TAKEAWAYS:

1. MFA significantly enhances account security against unauthorized access.
2. Upgrading tools ensures compatibility with MFA requirements.
3. Administrators have until July 2026 for full compliance.
4. Large-scale enforcement promises improved security for all Azure users.
5. MFA adoption is part of a broader security initiative by Microsoft.