Conditional Access Policy – Latest

Azure Conditional access policy has been very effective in enforcing policies such as enforcing users MFA, Devices, Access control and so on.

There is a latest update from Microsoft which is in the below blog.

https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/concept-conditional-access-conditions

Essentially what it means is that conditional access policy will apply to legacy application by default

  1. If you must use legacy authentication, you must exclude those accounts from the policy, you can do this under Azure AD -> Security -> Conditional Access -> Open an Existing policy that you have -> Under Users and groups -> Exclude
(or)

2. Configure CA only for Modern application,

You can do this under Azure AD -> Security -> Conditional Access -> New policy (or) Open an Existing policy -> Under Conditions -> Client apps, Uncheck the Legacy authentication

Note: This recent announcement from MS only applies to new CA, existing CA will continue to work as it is.

VJ

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.