There are some great policies, thanks for sharing. I have always overlooked Windows Phone when blocking unsupported Operating systems! Do you ever include GPS location in your location-based CA policy?
Great Video Rajith. CA is not applied to Windows Login or Microsoft Authenticator "Application" for obvious reasons, but they keep showing in the CA Reports as Not Covered. Any solution for this ?
what are methods enable MFA scenario and creating conditional policy using template what are the scenario I am not cleat about logging to windows 354 portal enable mfa (manage) conditional access policy something Microsoft tag
13 วันที่ผ่านมา
correct me if i am wrong but with CAP - you CANNOT have a policy to check if the machine has an anti virus or not right? this could only be done by the intune compliance policy ?
![Why Your Conditional Access Policies Are Failing [5 Major Pitfalls]](http://i.ytimg.com/vi/IHaGbM7L7b0/mqdefault.jpg)
Along with the usual must CA policies, the list includes not so common ones like blocking device code flow, disabling persistent browser sessions etc.
A nice collection of CA policies. Always good to see some fresh thinking in this space!
Thanks @GregThomson
thanks ! i learned some stuff :)
Glad to know that the video helped you 👍
There are some great policies, thanks for sharing.
I have always overlooked Windows Phone when blocking unsupported Operating systems!
Do you ever include GPS location in your location-based CA policy?
thanks !!
Glad you liked the video @macm3086
Great Video Rajith. CA is not applied to Windows Login or Microsoft Authenticator "Application" for obvious reasons, but they keep showing in the CA Reports as Not Covered. Any solution for this ?
what are methods enable MFA scenario and creating conditional policy using template what are the scenario I am not cleat about logging to windows 354 portal enable mfa (manage) conditional access policy something Microsoft tag
correct me if i am wrong but with CAP - you CANNOT have a policy to check if the machine has an anti virus or not right? this could only be done by the intune compliance policy ?