Forum Discussion
Intune Conditional Access Policies
Hi Everyone, I'm quite new with using Intune, I was trying to figure out if there was a way that I could create a conditional access policy which would allow a device that has been enrolled, the ...
Dwayne05 It all depends on how you have configured the existing CA policies.
If the user/device fall into another CA policy that blocks online apps (or all apps) then you will first need to update that CA policy to exclude these users/device. You can then create a new policy that does a Grant access if the user/device meet your criteria.
A sample CA policy will be the one below.
- Users: All users
- App: (Select all O365 Online apps)
- Condition: Is Compliant
- Location: Exclude Trusted network
- Access: Grant Access
Once you have this policy any user that doesn't have a compliant (enrolled device) will not be able to access Office 365 online apps.