I need to block user access to the Azure Portal and require MFA for allowed admin users. When I run the What if test on a Managed Identity sign-in account, the policy is blocking access to Azure Portal application. The Managed Identity accounts do not show up in the Workload Identities list.