When you enable these rules, you can select which users or groups the policy applies to, which devices are covered and which type of client applications are covered (browser and native apps or native apps only).
After creating and saving the policy, any all access attempts from a device that doesn't meet the policy to an Azure AD protected resource will be denied. To learn about each of the controls available we have prepared a guide where you can find the details on each of the conditions, here . Supported devices and applications You may have a variety of devices in your organization. For devices to be able to participate in device-based conditional access, devices must be registered with Azure AD.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.