Share via

I need help setting up my conditional access policy to become MFA compliant

Jared 0 Reputation points
2025-01-23T17:32:08.72+00:00

I am very new to azure and do not understand all the features very well. I was able to deploy a website on Azure App service and its been going great, but I need to create a conditional access policy to become compliant with the MFA requirement. I am stuck. Following the MFA setup tutorial; I have signed up for Entra ID, but I need to upgrade my plan to be able to create a conditional access policy. When I go through the setup for a free trial of Entra ID PD1, it doesn't recognize the email address I use with my azure account and it wants me to create a new account with a different email. How will I be able to set up my security policies with this separate account? I have been watching YouTube tutorials and reading the tutorials from microsoft but I just don't know enough about Azure to be able to navigate the instructions. Can anyone explain it in a more basic way? Thank you!

Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
8,281 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
23,216 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Shree Hima Bindu Maganti 3,125 Reputation points Microsoft Vendor
    2025-01-28T07:17:11.2733333+00:00

    Hi @Jared ,
    Thanks for the question and using MS Q&A platform.
    To set up a Conditional Access policy for MFA compliance in Microsoft Entra ID, make sure you have the right license, like the Entra ID Premium P1 or P2 plan. If you're having issues with your Azure account and email recognition for the trial, you might need to contact Microsoft support to upgrade your account instead of creating a new one.

    Once you've got the right plan, follow these easy steps to create a Conditional Access policy:

    Sign in to the Microsoft Entra admin center. Go to Protection > Conditional Access > Policies. Click on + New policy to create a new policy. Name it (e.g., "MFA Compliance Policy"). Under Assignments, select Users or workload identities and choose who this policy will affect. Under Cloud apps or actions, pick the apps that will need MFA. In Access controls, select Grant and then choose Require multifactor authentication. Finally, enable the policy and save your changes.

    If you're still feeling stuck, consider reaching out to your IT support or a knowledgeable colleague for help.
    Tutorial: Migrate Okta sign-on policies to Microsoft Entra Conditional Access

    Require MFA for Azure management

    Plan a Microsoft Entra multifactor authentication deployment
    If the answer is helpful, please click Accept Answer and kindly upvote it so that other people who faces similar issue may get benefitted from it.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.