Microsoft is going to automatically deploy a policy for many of it’s customers that will make it mandatory for administrator users to use MFA.
Microsoft will roll out MFA-enforcing policies for admin portal access (bleepingcomputer.com)
Of course the admins could turn this policy off – but why would they? Watch this space for news on the organisation that does just that!
One quick aside – we already enforce this “admin = MFA” for our clients, not only on M365 but any other system our clients use.
Clive Catton MSc (Cyber Security) – by-line and other articles