Prowler, a cloud security tool, has adapted to Microsoft's enforcement of multi-factor authentication (MFA) for Microsoft 365 by introducing a new certificate-based authentication method. Originally, Prowler supported Microsoft 365 through Service Principal authentication, later expanding to include username and password methods via PowerShell modules. However, with Microsoft's policy change blocking non-interactive access for user credential sign-ins, Prowler deprecated the older method and enhanced its Service Principal authentication to eliminate the need for user credentials. The new version 5.13 now features certificate-based authentication as a secure alternative, which involves creating a self-signed certificate, uploading it to Microsoft Entra, and providing an encoded credential in Prowler Cloud to maintain full Microsoft 365 functionality, thereby enhancing security against account compromise attempts.