MT.1008 - At least one Conditional Access policy is configured to require MFA for Azure management.
Overview
MFA for Azure management is a critical security control. This function checks if the tenant has at least one conditional access policy requiring multifactor authentication to access Azure management.
Test Metadata
| Field | Value |
|---|---|
| Test ID | MT.1008 |
| Severity | High |
| Suite | M365 Advisor |
| Category | CA |
| PowerShell test | Test-MtCaMfaForAdminManagement |
| Tags | CA, M365Advisor, MT.1008 |
Source
- Pester test:
tests/M365Advisor/Entra/Test-ConditionalAccessBaseline.Tests.ps1 - PowerShell source:
powershell/public/M365Advisor/entra/Test-MtCaMfaForAdminManagement.ps1