last sync: 2024-Jun-14 18:20:16 UTC

[Deprecated]: MFA should be enabled on accounts with read permissions on your subscription

Azure BuiltIn Policy definition

Source Azure Portal
Display name [Deprecated]: MFA should be enabled on accounts with read permissions on your subscription
Id e3576e28-8b17-4677-84c3-db2990658d64
Version 3.0.0-deprecated
Details on versioning
Category Security Center
Microsoft Learn
Description This policy definition is no longer the recommended way to achieve its intent. Instead of continuing to use this policy, we recommend you assign this replacement policy with policy ID 81b3ccb4-e6e8-4e4a-8d05-5df25cd29fd4. Learn more about policy definition deprecation at
Mode All
Type BuiltIn
Preview False
Deprecated True
Reference Reference to 1 related Policy definition (taken from description)
Accounts with read permissions on Azure resources should be MFA enabled (81b3ccb4-e6e8-4e4a-8d05-5df25cd29fd4)
Effect Default
AuditIfNotExists, Disabled
RBAC role(s) none
Rule aliases THEN-ExistenceCondition (1)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Security/assessments/status.code Microsoft.Security assessments properties.status.code false
Rule resource types IF (1)
Compliance Not a Compliance control
Initiatives usage none
Date/Time (UTC ymd) (i) Change type Change detail
2023-05-01 17:41:52 change Version remains equal, new suffix: deprecated (3.0.0 > 3.0.0-deprecated)
2021-01-05 16:06:49 change Major (2.0.0 > 3.0.0)
JSON compare
compare mode: version left: version right: