Forum Discussion
SebCerazy
Nov 14, 2022Iron Contributor
Conditional Access for Azure AD ONLY joined devices
All my user mobile devices (Windows based) are Azure AD joined (no hybid) The requirement is to allow access to online resources from these devices ONLY & if external to trusted location then do MFA...
Nov 14, 2022
Try using filters in EndPoint Manager/Intune https://learn.microsoft.com/en-us/mem/intune/fundamentals/filters
- SebCerazyNov 15, 2022Iron Contributor?????
And what would that do to my Conditional Access in Azure?- Nov 15, 2022CA checks the compliance policies. Don’t allow personal devices to be compliant.
- SebCerazyNov 15, 2022Iron ContributorPersonal devices (not Azure joined) are NEVER compliant, so that is not an issue!
But as explained, I can NOT chose just the compliance condition (because that does not work 100% every time, for reasons mentioned).