Microsoft and IAMCP launch the Secure Partner Initiative to boost security for partners and clients. Through concise, actionable emails, partners learn essential steps like setting security contacts, enabling MFA, and adopting GDAP privileges, ensuring robust defense against cyber threats by October 2025. Unique :
Microsoft & IAMCP Launch Secure Partner Initiative to Boost Security
Microsoft, in partnership with IAMCP, has rolled out the Secure Partner Initiative (SPI) under the Secure Future Initiative (SFI). This multi-year program aims to enhance security for Microsoft partners and their clients by tackling cyber threats head-on. The initiative delivers quick, actionable security tips via emails from March to June 2025, making it easy for partners to implement vital protections immediately.
What’s New: Quick Security Pills for Partners
Between March and June 2025, partners received concise security “pills” with clear steps. These tips focus on improving security posture with minimal time investment—some just take five minutes!
“The Secure Partner Initiative helps partners protect themselves and their clients from identity theft and unauthorized access.”
One crucial update: starting October 1, 2025, Cloud Solution Provider (CSP) partners must meet these security requirements to continue transacting through Microsoft.
Major Updates: Key Security Actions Partners Must Take
Designate a Security Contact
Partners must appoint a dedicated security contact to handle Microsoft security alerts. This person should have a monitored mailbox, preferably a distribution list, to ensure rapid response.
Failing to set this up risks delayed threat responses, exposing both partners and clients to breaches.
Enforce Multi-Factor Authentication (MFA) for Admins
All administrative roles in both partner and customer tenants must enable MFA. This step significantly reduces the risk of account compromise, as admin accounts hold elevated permissions.
Microsoft provides detailed guides and tools like the Microsoft 365 MFA wizard and Conditional Access policies to simplify this process.
“Requiring MFA for admin roles makes it much harder for attackers to gain access to critical accounts.”
3. Adopt Granular Delegated Admin Privileges (GDAP)
GDAP replaces the older Delegated Admin Privileges (DAP) model, offering more secure, time-limited, and least-privilege access to customer resources. Partners must transition to GDAP before DAP is removed to maintain admin rights.
Why This Matters: Protecting Your Business and Clients
Cyber threats are evolving rapidly. Microsoft’s SPI ensures partners stay ahead by adopting Zero Trust principles and minimizing attack surfaces. The initiative’s bite-sized steps make security upgrades manageable without disrupting daily operations.
Partners ignoring these updates risk losing access privileges, exposing sensitive data, and facing compliance issues.
Get Started Now
Don’t wait! Review all security pills, update your Partner Center settings, and enable MFA today. Microsoft offers extensive resources to guide you through each step.
For more details, visit the Partner Center Security Contact and Microsoft MFA documentation.
From the New blog articles in Microsoft Community Hub
Windows Server Devices Now Recognized as a New OS in Intune Microsoft has announced that Windows Server devices are Read more
Microsoft Power Platform is leading the way in AI-generated low-code app development. With the help of AI, users can quickly Read more
Microsoft Intune is an enterprise mobility management platform that helps organizations manage mobile devices, applications, and data. The October edition Read more
Microsoft Intune has released its November edition, featuring new updates to help IT admins better manage their organization’s mobile devices. Read more
