if you split security into tiers as per RBAC and the same human person needs multiple accounts does each account consume an azure licence
Microsoft recommends splitting on prem and hybrid assets into tiered access T0 T1 and T2 to facilitate RBAC (role based access control). The principle being that t0 logons are never mixed with t1 logons to minimise any breach.
If, therefore, an admin needs multiple accounts with azure mfa enabled does it consume multiple azure licences ?
So say domain controllers are t0 , member servers are t1 but the same admin needs to look after both so therefore needs a t0 user account and a t1 user account but also needs to authenticate via azure mfa will they have to pay for 2 licences rather than 1 remembering that it is for 1 actual person only ?