Microsoft Entra Replaces Revoke MFA Sessions

Microsoft said starting February 2026 it will replace the Revoke multifactor authentication sessions button with a unified Revoke sessions button in the Microsoft Entra admin portal. The new button invalidates all user sessions, including MFA, regardless of enforcement via Conditional Access or per-user policies, and the article urges admins to script revocation and other remediation steps using Microsoft Graph PowerShell while noting Entra P1 licensing requirements.
Key Points
- 1Replaces Revoke multifactor authentication sessions with Revoke sessions, effective February 2026, in Microsoft Entra portal
- 2Standardizes behavior to invalidate all user sessions including MFA regardless of conditional access or per-user policies
- 3Prompts administrators to script revocation workflows using Microsoft Graph PowerShell to secure compromised accounts efficiently
Scoring Rationale
Official Microsoft change with practical PowerShell guidance, strong enterprise impact but limited novelty beyond consolidating UI and messaging.
Sources
Public references used for this report.
Practice interview problems based on real data
1,625 SQL & Python problems across 15 industry datasets — the exact type of data you work with.
Try 250 free problems