![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 84%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKN%3C/text%3E%3C/svg%3E)
2,255 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 78%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESG%3C/text%3E%3C/svg%3E)
Thank you for posting this in Microsoft Q&A.
As I understand you are getting notifications regarding Sept 2024 and Sept 2025.
MFA migration will be taking place by end of Sept 2024
There is a change in Azure which is enforcing MFA for all users while accessing Azure portal , Entra portal and Intune portal.
Phase 0: Starting August 15, 2024 customers will be notified that this enforcement will be coming to their tenants in 60+ days. They will be directed to this page for more information and steps on how to request a grace period.
Phase 1: Starting in October 15, 2024, enforcement for MFA at sign-in for the Azure portal , Entra portal and Intune portal will roll out gradually to all tenants. This phase will not impact any other Azure clients, such as Azure CLI , Azure PowerShell and IaC tools. This phase is expected to last until March 2025.
Phase 2: Starting in early 2025, enforcement for MFA at sign-in for Azure Command Line Interface (CLI), Azure PowerShell and Infrastructure as Code (IaC) tools will gradually roll out to all tenants.
MFA and SSPR will be migrated by end of Sept 2025
The migration to the Authentication methods policy in Microsoft Entra ID is a process where you move your legacy policy settings that separately control multifactor authentication (MFA) and self-service password reset (SSPR) to a unified management system.
Basically, on 30 September 2025, the ability to manage authentication methods in the legacy multifactor authentication (MFA) and self-service password reset (SSPR) policies will be retired. Before that date, you'll need to migrate to the Authentication methods policy in Entra ID, which provides all the same capabilities, plus it enables you to:
- Centrally manage MFA, SSPR, and passwordless authentication methods.
- More granularly target authentication methods to groups of users instead of all users.
- Access more secure authentication methods that will be part of future updates of this policy.
If you don’t migrate, your users will not be affected immediately. You can continue to use tenant-wide MFA and SSPR policies while you configure authentication methods more precisely for users and groups in the Authentication methods policy. However, in March 2023, Microsoft announced the deprecation of managing authentication methods in the legacy MFA and SSPR policies. This means that these legacy policies will eventually be phased out, and it’s recommended to migrate to the new Authentication methods policy.
To avoid any disruptions in service, migrate your authentication methods from the MFA and SSPR policies to the Authentication methods policy before 30 September 2025.
If you need more detailed instructions or have specific questions, I recommend checking out the official Microsoft Learn documentation. It provides a comprehensive guide on how to migrate to the Authentication methods policy.
Documentation links:
- How to migrate MFA and SSPR policy settings to the Authentication methods policy for Microsoft Entra ID: https://video2.skills-academy.com/en-us/entra/identity/authentication/how-to-authentication-methods-manage
- Manage authentication methods for Microsoft Entra ID: https://video2.skills-academy.com/en-us/entra/identity/authentication/concept-authentication-methods-manage
- Plan a Microsoft Entra multifactor authentication deployment: https://video2.skills-academy.com/en-us/entra/identity/authentication/howto-mfa-getstarted
Let me know if you have any further questions.
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.