Forum Discussion
SebCerazy
Nov 14, 2022Iron Contributor
Conditional Access for Azure AD ONLY joined devices
All my user mobile devices (Windows based) are Azure AD joined (no hybid) The requirement is to allow access to online resources from these devices ONLY & if external to trusted location then do MFA...
SebCerazy
Iron Contributor
Yes, works fine
Paulfi
Dec 07, 2023Copper Contributor
SebCerazy Do you have any SSO enterprise applications? The CA you recommended works great but during the SSO there is NO device information so that login is blocked
- SebCerazyDec 07, 2023Iron ContributorI sure use SSO (for MS services) and some others. True that some did not work (like Adobe Identity), so these got exempt
- PaulfiDec 07, 2023Copper ContributorDuh. Thank you!!
- PaulfiDec 07, 2023Copper Contributorso that works for that SSO app. Now i am finding that i get NO device info for
Office365 Shell WCSS-Client
Office 365 SharePoint Online
Are the stored windows creds getting passed through like the SSO app i added to the list. I dont want to exclude SPO.- SebCerazyDec 08, 2023Iron ContributorFor both I get:
Office365 Shell WCSS-Client
Office 365 SharePoint Online
Browser Edge 119.0.0
Operating System Windows10
Compliant Yes
Managed Yes
Join Type Azure AD joined
Maybe users are using Chrome without Microsoft 365 add-on?
Seb