Forum Discussion
Solved
Autht cloud app security
Hello I have setup an authentication context and published it to CA polices. The Authentication Context name is "trusted device". I created the CA policy per below . When i log into the application ...
He doesn't explicitly mention it indeed. But if you look at the screenshots near the end of the article, you can see the second policy above the MCAS policy screenshot. Underneath the screenshot he mentions: You also need session policy to be enabled on conditional access targeting apps
Interesting, and thank you for testing this in your lab. Creating two CA polices contradicts what the author of this posts has done. Scroll down to the "Configuration for MS Cloud App Security and Azure Portal Action" part of the article.
https://securecloud.blog/2021/05/22/deep-diver-azure-ad-conditional-access-authentication-context-setup-for-custom-apps-and-ms-cloud-app-security/
https://securecloud.blog/2021/05/22/deep-diver-azure-ad-conditional-access-authentication-context-setup-for-custom-apps-and-ms-cloud-app-security/
He doesn't explicitly mention it indeed. But if you look at the screenshots near the end of the article, you can see the second policy above the MCAS policy screenshot. Underneath the screenshot he mentions: You also need session policy to be enabled on conditional access targeting apps
- Hahahaha. It works with the second CA policy. Thank you very much for all your help. Much appreciated
The policy with the authentication context should have the "require mfa" and "require compliant device controls.
- Okay, i didn't notice that. Which CA policy should have the "require mfa" and "require compliant device" ?