Merge pull request #205231 from MicrosoftGuyJFlo/patch-55

Update howto-conditional-access-policy-admin-mfa.md

Author: PRMerger16

articles/active-directory/conditional-access/howto-conditional-access-policy-admin-mfa.md

@@ -19,7 +19,7 @@ ms.collection: M365-identity-device-management
 
 Accounts that are assigned administrative rights are targeted by attackers. Requiring multi-factor authentication (MFA) on those accounts is an easy way to reduce the risk of those accounts being compromised.
 
-Microsoft recommends you require MFA on the following roles at a minimum:
+Microsoft recommends you require MFA on the following roles at a minimum, based on [identity score recommendations](../fundamentals/identity-secure-score.md):
 
 - Global administrator
 - Application administrator