In 2024, Microsoft announced they will be enforcing mandatory multifactor authentication (MFA) for all Azure sign-in attempts. Refer to the following Microsoft articles for more information:
How is Quest On Demand Recovery impacted?
The first phase of the enforcement, in the second half of 2024, impacts sign-ins to the Azure portal and Microsoft Entra admin center applications. This enforcement has no impact on Quest On Demand Recovery and all features will remain available. The On Demand platform supports multifactor enabled accounts for tenant management including consents.
The second phase of enforcement in early 2025 will impact some features of Quest On Demand Recovery. The following features will be impacted:
Backup and restore of MFA authentication settings
Backup and restore of MFA state per user
Backup and restore of related data for inactive mailbox
This enforcement will impact the current API in use and will prevent the backup of multifactor authentication in a customer’s tenant. We have been working directly with Microsoft to determine alternative methods and the recommended new API is not designed to backup multifactor authentication across an entire tenant and is heavily throttled. The use of this API would result in extremely poor performance for our time to backup, as well as very poor scalability. Due to these deficiencies, Quest has decided to temporarily deprecate the backup of multifactor authentication once Microsoft begins enforcement in early 2025. This measure will remain until Microsoft provides an alternative that does not negatively impact our customers' overall experience. The exact date of the enforcement by Microsoft and deprecation of our features is unknown. We will continue to monitor the situation closely and are preparing remediation steps when enforcement begins.
Action Required:
There is no immediate action required on the customer’s behalf.
For more information, please contact Quest Support.
© ALL RIGHTS RESERVED. Terms of Use Privacy Cookie Preference Center