Microsoft has begun implementing Multi-Factor Authentication (MFA) for all Azure resource users – the change was made effective on the 1st October 2025. Microsoft has implemented a cohesive Authentication Methods policy that ensures more efficient management and improved security. The changes are a part of a 2-phase enforcement plan which began in 2024.
How will this affect my business?
All users who want to access Microsoft services will now have mandatory MFA enforcement enabled via Microsoft Entra. If any users within your Microsoft tenant have yet to enable MFA, they will need to complete a setup process before accessing their accounts.
Why this change is being implemented
As cyberattacks become more sophisticated, with user targeted breaches have become a common way for bad actors to gain access to your business-critical data. Setting up MFA on accounts ensures there’s a second layer of protection that can mitigate a breach if valuable data such as user passwords were stolen or leaked.
Cloud Central can help
If your organisation is looking to improve its cybersecurity or concerned about the recent rise in cybercrime we can help. Cloud Central is the partner of choice when businesses look to ensure cyber resilience.