![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(272, 60%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELF%3C/text%3E%3C/svg%3E)
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
11,828 questions
Hi @Laurent F
Yes, the MFA enforcement on October 15th may affect the automation process using machine email and machine pwd. According to Microsoft’s announcement, all user identities will require MFA verification when performing any create, read, update, or delete (CRUD) operations. This means your script might need to pass MFA verification when obtaining the OAuth token.
To avoid disruptions, it is recommended to migrate these user identities to workload identities (such as managed identities and service principals), as these identities are not affected by the MFA enforcement. If you have emergency access accounts that also need MFA configuration, consider using FIDO2 keys or certificate-based authentication to meet the MFA requirements.
Refer to similar issue.
Hope this helps.
If the reply is helpful, please click Accept Answer and kindly upvote it. If you have additional questions about this answer, please click Comment.