At least one Conditional Access policy is configured to require MFA for users with administrator roles
Why This Matters
Administrator roles have elevated privileges that, if compromised, can lead to tenant-wide breaches and data loss. Without a Conditional Access policy requiring MFA for these roles, your organization is exposed to credential theft attacks such as phishing and password spray that target highly privileged accounts.
What Aether365 Checks
This check verifies that at least one Conditional Access policy in your tenant is configured to require multifactor authentication for users with administrator roles. You can view this assessment in the Aether365 dashboard under the Microsoft 365 checks section.