Monthly Update: Important actions partners need to take to secure the partner ecosystem
Important capabilities and updates to improve your security posture and protect your customers’ tenants are now available.
Important capabilities and updates to improve your security posture and protect your customers’ tenants are now available.
- Date: September 23, 2024
- Workspace: General
- Impacted audience: Direct bill partners, indirect providers, and indirect resellers transacting through the Cloud Solution Provider (CSP) program and with advisors
Changes to the one-time discretionary credit for Azure frauds: As part of the expansion of the Secure Future Initiative, we’ve implemented a change in the way we assess refund eligibility for a one-time discretionary credit for fraudulent activity that occurs on individual Azure customer tenants on CSP new commerce.
As of September 3, 2024, partners must have enabled multifactor authentication (MFA) for all their administrative users on their CSP tenant, at the time the fraudulent activity started, to be eligible for review.
Security is a shared responsibility, and it’s crucial that CSP partners take all the proactive steps to protect identities and accounts.
MFA requirements for Azure portal: Starting October 2024, Microsoft will begin enforcement of multifactor authentication (MFA) for all users signing into Azure portal. Review the latest information and timeline.
Coming soon
- Removal of unused Azure subscriptions: Microsoft will block and eventually delete unused Azure subscriptions, starting November 2024. A subscription is considered unused when there’s no activity or consumption for more than 12 months. Learn more about unused subscriptions on our website. Account owner and service admins of the subscription will be notified 30 days before the block is applied. The subscription will be deleted 90 days after the block.