Microsoft will enforce multi-factor authentication (MFA) for all users accessing the Microsoft 365 admin center starting in February 2026, enhancing account security and reducing risk of unauthorized access. Organizations are urged to enable MFA beforehand to prevent service disruptions, as it significantly boosts protection against attacks like phishing and credential stuffing. #Microsoft365 #AzurePortal #MFAenforcement
Keypoints
- Microsoft will enforce MFA for all Microsoft 365 admin center users starting February 2026.
- Enabling MFA provides an added layer of security beyond passwords, preventing various cyberattacks.
- Admins are encouraged to configure MFA immediately to avoid access disruptions.
- Microsoft has already enforced MFA for Azure Portal, CLI, PowerShell, SDKs, and APIs since 2025.
- A study shows MFA reduces account compromise chances by over 98%, with 99.99% of protected accounts blocking hacking attempts.