MFA Enforcement Oct 15th to all the users in the tenant will impact the SMTP Common user accounts/service accounts used in the application

Ramesh Raja 0 Reputation points
2024-10-15T14:52:09.7+00:00

We are using few Email accounts configured in the application with SMTP Auth. Below are my questions.

  1. Microsoft MFA Enforcement on Oct 15th to all the users in the tenant will get impact to the Email accounts which are configured with SMTP Auth?
  2. We are using Microsoft Entra ID Free edition. Is it possible to exclude service accounts from MFA to login to our custom application authenticating with Entra ID.
Microsoft 365 and Office | Install, redeem, activate | For business | Windows
Microsoft Security | Microsoft Entra | Microsoft Entra ID
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Raja Pothuraju 24,135 Reputation points Microsoft External Staff Moderator
    2024-10-15T20:46:30.3+00:00

    Hello @Ramesh Raja,

    Thank you for posting your query on Microsoft Q&A.

    Based on your description, I understand that you have several email accounts configured in the application with SMTP authentication.

    Microsoft MFA Enforcement on Oct 15th to all the users in the tenant will get impact to the Email accounts which are configured with SMTP Auth?

    No, the Microsoft MFA enforcement will not affect any applications other than the Azure Portal, Entra portal, and Intune portal logins. This enforcement specifically applies to user logins on Azure, Entra, and Intune portals. End users accessing apps, websites, or services hosted on Azure, but not signing into the Azure portal, CLI, or PowerShell, will not be subject to this requirement from Microsoft. Authentication requirements for end users will still be determined by the app, website, or service owners.

    We are using Microsoft Entra ID Free edition. Is it possible to exclude service accounts from MFA to login to our custom application authenticating with Entra ID.

    Service accounts used to log into your custom application will not prompt for MFA after the enforcement begins. These accounts should function as intended without any issues. If there are any MFA policies configured for your tenant, you can exclude these service accounts from them. However, the mandatory MFA enforcement will not apply to service accounts authenticating on custom applications.

    User's image

    Reference: https://learn.microsoft.com/en-us/entra/identity/authentication/concept-mandatory-multifactor-authentication

    I hope this information is helpful. Please feel free to reach out if you have any further questions.

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    Thanks,
    Raja Pothuraju.


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.