Hello,
Welcome to Microsoft Q&A,
- The IP range can be defined as Trusted IPs to configure MFA. The MFA is not required when the login is from a trusted location. https://learn.microsoft.com/en-us/entra/identity/authentication/howto-mfa-mfasettings#trusted-ips
- Global Admin or Conditional Access Administrator can modify the privileges
- Best Practice
- Maintain Security Compliance: Ensure that test environments are isolated from production and test data is protected. Do not store sensitive authentication information (e.g., OTPs or API tokens) in test logs.
- Bypass MFA and test Full MFA occasionally: While bypassing MFA in test automation is convenient, it’s important to periodically test the full MFA flow manually
- To configure MFA effectively,
- https://learn.microsoft.com/en-us/entra/identity/authentication/howto-mfa-mfasettings - Account Lockout, Fraud Alert, Report suspicious activity, Enable and Disable verification methods, etc.,
Please upvote and accept the answer if it helps! Let us know if you have any further questions.