MicrosoftHello Alex,
I'm trying to implement a complex access policy using Azure ADP1 and CA. The CAE would be a great benefit to support location changes.
As it is highlighted the documentation it is currently focusing on IP based location.
I followed the guidelines, created CA policies for both geographical and IP based locations but each in a separate, dedicated policy. (Geographical locations based policies simply blocking specific countries while policies based purely on IP locations just enforcing MFA).
However I'm not receiving the expected outcome. When a user is accessing EXO using Outlook client from an IP address that we consider safe MFA is not required (this is normal behavior) but when the user moves to a new IP address (from home for example) the MFA is not enforced.
Is there any way to track/find any log for the reason why the CAE is not addressing this IP address changes?
What would you recommend on how to go further with the debugging of this problem?
Thank you in advance!
Ferenc
