![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(99.2, 28.999999999999996%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
Microsoft Security | Microsoft Entra | Microsoft Entra ID
A cloud-based identity and access management service for securing user authentication and resource access
Hello @Raymond,
I understand that you're planning a migration from legacy Multi-Factor Authentication (MFA) and Self-Service Password Reset (SSPR) to the modern Authentication Methods policy in Microsoft Entra ID, and you’ve had few questions-
Will there be any changes in CAP after the migration?
Migration from legacy to modern authentication methods policy is only about the methods you use for completing the authentication which will not affect CAP as CAP is only a way to enforce MFA. MFA registration is different from MFA enforcement. So, there is no effect to conditional access policies after migration. There is not available Microsoft Document for the question as there is no link between conditional access policy and the authentication methods migration.
Will users be prompted to register for a new authentication method after migration?
Users would not be prompted to register for a new authentication method, if the existing authentication methods and password reset methods are matching the new authentication methods policy. Users would be prompted if there is a difference in legacy methods policy and modern authentication methods policy.
https://learn.microsoft.com/en-us/entra/identity/authentication/how-to-authentication-methods-manage
Will the SMS authentication method still be available after migration?
Legacy MFA policy and legacy SSPR policy already have SMS authentication available. This method is also available in the new authentication methods policy. You need to navigate to Microsoft Entra ID > Security > Manager > Authentication Methods Policy > SMS > Enable (Check all users or groups you would like to use for SMS)
Before migrating to the modern authentication methods policy, it's essential to ensure that all authentication methods currently enabled in the legacy MFA and legacy SSPR policies are also enabled in the modern policy. This alignment guarantees a seamless transition and ensures that end users do not experience any disruptions or loss of access during or after the migration.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".