Microsoft has fully enforced multifactor authentication (MFA) for Azure Portal sign-ins across all tenants by March 2025, enhancing security for administrative access. The company plans to extend MFA enforcement to Azure CLI, PowerShell, SDKs, and APIs by October 2025 to further protect user accounts against cyber threats. #AzureMFA #CyberThreats
Keypoints
- Microsoft has enforced MFA for all Azure Portal sign-ins across tenants since March 2025.
- The company announced mandatory MFA implementation for Azure administration in May 2024.
- Enforcement of MFA on Azure CLI, PowerShell, SDKs, and APIs begins in October 2025.
- Microsoft previously required MFA for admin portals and high-risk sign-ins through Conditional Access policies.
- GitHub has also enforced two-factor authentication for all active developers starting in January 2024.