Home
%3CLINGO-SUB%20id%3D%22lingo-sub-310174%22%20slang%3D%22en-US%22%3ERe%3A%20Updates%20to%20Azure%20AD%20Terms%20of%20Use%20functionality%20within%20conditional%20access%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-310174%22%20slang%3D%22en-US%22%3E%3CP%3EThis%20is%20a%20welcome%20change%20and%20we%20have%20begun%20piloting%20the%20Terms%20of%20Use%20acceptance%20CA%20policy%20during%20Intune%20enrollment%20with%20a%20few%20users.%20The%20biggest%20issue%20we%20have%20so%20far%20is%20scaling%20of%20the%20terms.%20We%20enforce%20users%20to%20expand%20the%20terms%20before%20they%20can%20accept%2C%20but%20many%20are%20complaining%20that%20the%20scaling%20of%20the%20text%20does%20not%20allow%20it%20to%20be%20easily%20read%20on%20mobile%20devices.%20Is%20there%20any%20way%20to%20fix%20that%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-299082%22%20slang%3D%22en-US%22%3ERe%3A%20Updates%20to%20Azure%20AD%20Terms%20of%20Use%20functionality%20within%20conditional%20access%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-299082%22%20slang%3D%22en-US%22%3E%3CP%3EHi%20Simran%2C%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EThe%20TOU%20would%20still%20appear%20in%20the%20same%20place%20during%20the%20B2B%20invitation%20redemption%20flow%2C%20but%20the%20new%20update%20is%20referring%20to%20leveraging%20the%20new%20%22all%20guests%22%20setting%20within%20conditional%20access%20rather%20then%20having%20to%20build%20a%20dynamic%20group.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EThanks%2C%3C%2FP%3E%0A%3CP%3EJoe%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-298896%22%20slang%3D%22en-US%22%3ERe%3A%20Updates%20to%20Azure%20AD%20Terms%20of%20Use%20functionality%20within%20conditional%20access%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-298896%22%20slang%3D%22en-US%22%3E%3CP%3EHi%2C%20it's%20exciting%20to%20see%20the%20new%20updates.%26nbsp%3B%20The%20question%20I%20have%20is%20around%20the%20mention%20of%20Terms%20of%20Use%20for%20B2B%20Guests.%20%26nbsp%3B%20This%20is%20already%20available%20today%20via%20Conditional%20Access%20policies%2C%20I'd%20like%20to%20understand%20what%20has%20changed%20in%20the%20release%20mentioned%20above.%26nbsp%3B%20Does%20the%20TOU%20now%20appear%20at%20a%20different%20point%20in%20the%20flow%2C%20as%20the%20invitation%20redemption%20flow%20is%20mentioned%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-298427%22%20slang%3D%22en-US%22%3ERe%3A%20Updates%20to%20Azure%20AD%20Terms%20of%20Use%20functionality%20within%20conditional%20access%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-298427%22%20slang%3D%22en-US%22%3E%3CP%3EHey%20Alexey%2C%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EAn%20admin%20can%20upload%20multiple%20PDF%20documents%20and%20tag%20those%20documents%20with%20a%20corresponding%20language%20(up%20to%20108).%20When%20end%20user%20signs%20in%20we%20look%20at%20the%20end%20users%20browser%20language%20preference%20and%20display%20the%20matching%20PDF%2C%20if%20there%20is%20no%20match%20we%20will%20display%20the%20default.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EThanks%2C%3C%2FP%3E%0A%3CP%3EJoe%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-298390%22%20slang%3D%22en-US%22%3ERe%3A%20Updates%20to%20Azure%20AD%20Terms%20of%20Use%20functionality%20within%20conditional%20access%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-298390%22%20slang%3D%22en-US%22%3EGreat%20news%2C%20indeed!%20I'm%20wondering%20whether%20it's%20feasible%20to%20get%20terms%20of%20use%20for%20each%20user%20on%20his%2Fher%20native%20language%20based%20on%20certain%20pre-defined%20configurable%20parameters%3F%20For%20instance%2C%20if%20user's%20language%20settings%20are%20set%20to%20Spanish%20or%20Chinese%2C%20then%20show%20them%20terms%20of%20use%20either%20on%20their%20preferred%20language%20or%20at%20least%20use%20both%20English%20version%20and%20translated%20version.%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-294822%22%20slang%3D%22en-US%22%3EUpdates%20to%20Azure%20AD%20Terms%20of%20Use%20functionality%20within%20conditional%20access%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-294822%22%20slang%3D%22en-US%22%3E%3CP%3EHowdy%20folks%2C%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EToday%2C%20I%20am%20excited%20to%20announce%20the%20release%20of%20two%20new%20features%20for%20Azure%20Active%20Directory%20(Azure%20AD)%20Terms%20of%20Use%20that%20provide%20more%20granular%20reports%20and%20flexibility%20with%20Terms%20of%20Use%20scheduling.%20Previously%2C%20users%20only%20had%20to%20consent%20to%20a%20Terms%20of%20Use%20once.%20Based%20on%20feedback%20from%20our%20customers%2C%20you%20now%20have%20the%20option%20to%20require%20each%20user%20to%20consent%20on%20each%20device.%20We%20also%20added%20support%20to%20expire%20consents%20on%20a%20regular%20schedule.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EI%E2%80%99m%20also%20pleased%20to%20introduce%20new%20Terms%20of%20Use%20scenarios%20for%20B2B%20guests%2C%20Azure%20Information%20Protection%2C%20and%20Microsoft%20Intune.%20These%20features%20are%20now%20in%20public%20preview%20for%20Azure%20AD%20Premium%20customers.%20Read%20on%20for%20details%20on%20both%20our%20new%20features%20and%20these%20scenarios.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CH2%20id%3D%22toc-hId-1653015010%22%20id%3D%22toc-hId-1702021364%22%20id%3D%22toc-hId-1702021364%22%20id%3D%22toc-hId-1702021364%22%20id%3D%22toc-hId-1702021364%22%20id%3D%22toc-hId-1702021364%22%3ERequire%20each%20user%20to%20consent%20on%20each%20device%3C%2FH2%3E%0A%3CP%3EPreviously%2C%20each%20user%20only%20had%20to%20consent%20to%20a%20Terms%20of%20Use%20one%20time.%20We%20heard%20feedback%20that%20the%20current%20report%E2%80%94showing%20which%20user%20consent%20to%20which%20Terms%20of%20Use%20and%20when%E2%80%94was%20not%20sufficient%20and%20that%20more%20granularity%20for%20HBI%20resources%20was%20needed.%20Going%20forward%2C%20you%20can%20require%20each%20user%20to%20consent%20on%20each%20device.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%3E%3CSPAN%20class%3D%22lia-message-image-wrapper%20lia-message-image-actions-narrow%20lia-message-image-actions-below%22%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20style%3D%22width%3A%20998px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Fgxcuf89792.i.lithium.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F61235iAC809ECF36E5EE4D%2Fimage-size%2Flarge%3Fv%3D1.0%26amp%3Bpx%3D999%22%20alt%3D%22Updates%20to%20Azure%20AD%20Terms%20of%20Use%201.png%22%20title%3D%22Updates%20to%20Azure%20AD%20Terms%20of%20Use%201.png%22%20%2F%3E%3CSPAN%20class%3D%22lia-inline-image-caption%22%20onclick%3D%22event.preventDefault()%3B%22%3ETerms%20of%20Use%20showing%20new%20consent%20option.%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%3E%3CSPAN%20class%3D%22lia-message-image-wrapper%22%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20style%3D%22width%3A%20999px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Fgxcuf89792.i.lithium.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F61236iC4A0FEA27437423C%2Fimage-size%2Flarge%3Fv%3D1.0%26amp%3Bpx%3D999%22%20alt%3D%22Updates%20to%20Azure%20AD%20Terms%20of%20Use%202.png%22%20title%3D%22Updates%20to%20Azure%20AD%20Terms%20of%20Use%202.png%22%20%2F%3E%3CSPAN%20class%3D%22lia-inline-image-caption%22%20onclick%3D%22event.preventDefault()%3B%22%3ETerms%20of%20Use%20consents%20for%20device.%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CH2%20id%3D%22toc-hId--899141951%22%20id%3D%22toc-hId--850135597%22%20id%3D%22toc-hId--850135597%22%20id%3D%22toc-hId--850135597%22%20id%3D%22toc-hId--850135597%22%20id%3D%22toc-hId--850135597%22%3EExpire%20consents%20on%20a%20regular%20schedule%3C%2FH2%3E%0A%3CP%3EFor%20customers%20who%20have%20a%20compliance%20requirement%20or%20regulation%20requiring%20users%20to%20consent%20to%20a%20Terms%20of%20Use%20on%20a%20recurring%20basis%2C%20we%20added%20support%20to%20expire%20consents%20on%20a%20regular%20schedule.%20Now%2C%20you%20can%20configure%20consents%20to%20expire%20on%20a%20per%20user%20schedule%20and%2For%20a%20per%20Terms%20of%20Use%20schedule.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%3E%3CSPAN%20class%3D%22lia-message-image-wrapper%22%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20style%3D%22width%3A%20999px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Fgxcuf89792.i.lithium.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F61237i71D771DF7E90837B%2Fimage-size%2Flarge%3Fv%3D1.0%26amp%3Bpx%3D999%22%20alt%3D%22Updates%20to%20Azure%20AD%20Terms%20of%20Use%203.png%22%20title%3D%22Updates%20to%20Azure%20AD%20Terms%20of%20Use%203.png%22%20%2F%3E%3CSPAN%20class%3D%22lia-inline-image-caption%22%20onclick%3D%22event.preventDefault()%3B%22%3ENew%20Terms%20of%20Use%20schedule%20option.%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%3E%3CSPAN%20class%3D%22lia-message-image-wrapper%20lia-message-image-actions-narrow%20lia-message-image-actions-below%22%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20style%3D%22width%3A%20997px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Fgxcuf89792.i.lithium.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F61238i38379A0E8EAAA295%2Fimage-size%2Flarge%3Fv%3D1.0%26amp%3Bpx%3D999%22%20alt%3D%22Updates%20to%20Azure%20AD%20Terms%20of%20Use%204.png%22%20title%3D%22Updates%20to%20Azure%20AD%20Terms%20of%20Use%204.png%22%20%2F%3E%3CSPAN%20class%3D%22lia-inline-image-caption%22%20onclick%3D%22event.preventDefault()%3B%22%3ETerms%20of%20Use%20consents.%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CH2%20id%3D%22toc-hId-843668384%22%20id%3D%22toc-hId-892674738%22%20id%3D%22toc-hId-892674738%22%20id%3D%22toc-hId-892674738%22%20id%3D%22toc-hId-892674738%22%20id%3D%22toc-hId-892674738%22%3ENew%20scenarios%20for%20B2B%20guests%2C%20Azure%20Information%20Protection%2C%20and%20Intune%3C%2FH2%3E%0A%3CP%3EWe%20also%20added%20three%20new%20scenarios%20of%20Azure%20AD%20Terms%20of%20Use%3A%3C%2FP%3E%0A%3CUL%3E%0A%3CLI%3E%3CSTRONG%3ETerms%20of%20Use%20for%20B2B%20guests%3C%2FSTRONG%3E%E2%80%94Most%20organizations%20have%20a%20process%20in%20place%20(whether%20it%E2%80%99s%20good%20or%20bad)%20for%20their%20employees%20to%20consent%20to%20their%20organization's%20terms%20of%20use%20and%20privacy%20statements.%20But%20how%20can%20you%20enforce%20the%20same%20consents%20for%20B2B%20guests%20when%20they%E2%80%99re%20added%20via%20SharePoint%20or%20Microsoft%20Teams%3F%20Using%20conditional%20access%20and%20Terms%20of%20Use%20you%20can%20now%20enforce%20a%20policy%20directly%20towards%20B2B%20guest%20users.%20During%20the%20invitation%20redemption%20flow%2C%20the%20user%20is%20presented%20with%20the%20terms%20of%20use.%3C%2FLI%3E%0A%3C%2FUL%3E%0A%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%3E%3CSPAN%20class%3D%22lia-message-image-wrapper%22%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20style%3D%22width%3A%20310px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Fgxcuf89792.i.lithium.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F61239i802CFD6A40974B43%2Fimage-size%2Flarge%3Fv%3D1.0%26amp%3Bpx%3D999%22%20alt%3D%22Updates%20to%20Azure%20AD%20Terms%20of%20Use%205.png%22%20title%3D%22Updates%20to%20Azure%20AD%20Terms%20of%20Use%205.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CUL%3E%0A%3CLI%3E%3CSTRONG%3ETerms%20of%20Use%20for%20Azure%20Information%20Protection%3C%2FSTRONG%3E%E2%80%94Now%2C%20you%20can%20configure%20a%20conditional%20access%20policy%20to%20the%20Azure%20Information%20Protection%20app%20and%20require%20a%20terms%20of%20use%20when%20a%20user%20accesses%20a%20protected%20document.%20This%20will%20trigger%20a%20terms%20of%20use%20prior%20to%20a%20user%20accessing%20a%20protected%20document%20for%20the%20first%20time.%3C%2FLI%3E%0A%3C%2FUL%3E%0A%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%3E%3CSPAN%20class%3D%22lia-message-image-wrapper%22%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20style%3D%22width%3A%20786px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Fgxcuf89792.i.lithium.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F61240i31D8307847BDA0F3%2Fimage-size%2Flarge%3Fv%3D1.0%26amp%3Bpx%3D999%22%20alt%3D%22Updates%20to%20Azure%20AD%20Terms%20of%20Use%206.png%22%20title%3D%22Updates%20to%20Azure%20AD%20Terms%20of%20Use%206.png%22%20%2F%3E%3CSPAN%20class%3D%22lia-inline-image-caption%22%20onclick%3D%22event.preventDefault()%3B%22%3ETerms%20of%20Use%20for%20Azure%20Information%20Protection.%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FSPAN%3E%26nbsp%3B%3C%2FP%3E%0A%3CUL%3E%0A%3CLI%3E%3CSTRONG%3ETerms%20of%20Use%20for%20Intune%3C%2FSTRONG%3E%E2%80%94You%20also%20now%20have%20the%20ability%20to%20target%20the%20Terms%20of%20Use%20to%20the%20Intune%20enrollment%20app.%20This%20will%20display%20the%20Terms%20of%20Use%20prior%20to%20the%20enrollment%20of%20a%20device%20in%20Intune.%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3CBR%20%2F%3ERead%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3CSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fgo.microsoft.com%2Ffwlink%2F%3Flinkid%3D2010506%26amp%3Bclcid%3D0x409%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3EChoosing%20the%20right%20Terms%20of%20Use%20solution%20for%20your%20organization%3C%2FA%3E%3C%2FSPAN%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3Eto%20learn%20more.%3C%2FLI%3E%0A%3C%2FUL%3E%0A%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%3E%3CSPAN%20class%3D%22lia-message-image-wrapper%20lia-message-image-actions-narrow%20lia-message-image-actions-below%22%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20style%3D%22width%3A%20788px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Fgxcuf89792.i.lithium.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F61241i43687383DA5CA488%2Fimage-size%2Flarge%3Fv%3D1.0%26amp%3Bpx%3D999%22%20alt%3D%22Updates%20to%20Azure%20AD%20Terms%20of%20Use%207.png%22%20title%3D%22Updates%20to%20Azure%20AD%20Terms%20of%20Use%207.png%22%20%2F%3E%3CSPAN%20class%3D%22lia-inline-image-caption%22%20onclick%3D%22event.preventDefault()%3B%22%3ETerms%20of%20Use%20for%20Intune%20enrollment.%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3ECheck%20out%20the%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3CSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory%2Fgovernance%2Factive-directory-tou%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Edocumentation%3C%2FA%3E%3C%2FSPAN%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3Eon%20how%20to%20set%20up%20and%20configure%20Azure%20AD%20Terms%20of%20Use.%20Let%20us%20know%20what%20you%20think%20in%20the%20comments%20below.%20As%20always%2C%20we%E2%80%99d%20love%20to%20hear%20any%20feedback%20or%20suggestions%20you%20have.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EBest%20regards%2C%3C%2FP%3E%0A%3CP%3EAlex%20Simons%20(%40Alex_A_Simons%26nbsp%3B)%3C%2FP%3E%0A%3CP%3ECorporate%20VP%20of%20Program%20Management%3C%2FP%3E%0A%3CP%3EMicrosoft%20Identity%20Division%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-TEASER%20id%3D%22lingo-teaser-294822%22%20slang%3D%22en-US%22%3E%3CP%3EToday%2C%20I%20am%20excited%20to%20announce%20two%20new%20features%20and%20three%20scenarios%20for%20Azure%20Active%20Directory%20(Azure%20AD)%20Terms%20of%20Use%20that%20provide%20more%20granular%20reports%20and%20flexibility%20with%20scheduling.%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20style%3D%22width%3A%20999px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Fgxcuf89792.i.lithium.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F61321i634D03637C089A06%2Fimage-size%2Flarge%3Fv%3D1.0%26amp%3Bpx%3D999%22%20alt%3D%22Updates%20to%20Azure%20AD%20Terms%20of%20Use%20homepage.png%22%20title%3D%22Updates%20to%20Azure%20AD%20Terms%20of%20Use%20homepage.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-TEASER%3E%3CLINGO-LABS%20id%3D%22lingo-labs-294822%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EProduct%20Announcements%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-769690%22%20slang%3D%22en-US%22%3ERe%3A%20Updates%20to%20Azure%20AD%20Terms%20of%20Use%20functionality%20within%20conditional%20access%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-769690%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F53477%22%20target%3D%22_blank%22%3E%40Alex%20Simons%20(AZURE)%3C%2FA%3Edo%20you%20have%20any%20ideas%20on%20how%20to%20leverage%20ToU%20for%20when%20users%20login%20to%20their%20Windows%2010%20devices%3F%20This%20would%20be%20a%20perfect%20tool%20with%20all%20it's%20audit%20logging%20etc.%20but%20currently%20it%20seems%20to%20be%20usable%20only%20in%20certain%20cloud%20apps%20via%20Conditional%20Access.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAny%20roadmap%2F(private)%20preview%20for%20such%20a%20feature%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E

Howdy folks,

 

Today, I am excited to announce the release of two new features for Azure Active Directory (Azure AD) Terms of Use that provide more granular reports and flexibility with Terms of Use scheduling. Previously, users only had to consent to a Terms of Use once. Based on feedback from our customers, you now have the option to require each user to consent on each device. We also added support to expire consents on a regular schedule.

 

I’m also pleased to introduce new Terms of Use scenarios for B2B guests, Azure Information Protection, and Microsoft Intune. These features are now in public preview for Azure AD Premium customers. Read on for details on both our new features and these scenarios.

 

Require each user to consent on each device

Previously, each user only had to consent to a Terms of Use one time. We heard feedback that the current report—showing which user consent to which Terms of Use and when—was not sufficient and that more granularity for HBI resources was needed. Going forward, you can require each user to consent on each device.

 

Updates to Azure AD Terms of Use 1.pngTerms of Use showing new consent option.

Updates to Azure AD Terms of Use 2.pngTerms of Use consents for device.

Expire consents on a regular schedule

For customers who have a compliance requirement or regulation requiring users to consent to a Terms of Use on a recurring basis, we added support to expire consents on a regular schedule. Now, you can configure consents to expire on a per user schedule and/or a per Terms of Use schedule.

 

Updates to Azure AD Terms of Use 3.pngNew Terms of Use schedule option.

Updates to Azure AD Terms of Use 4.pngTerms of Use consents.

 

New scenarios for B2B guests, Azure Information Protection, and Intune

We also added three new scenarios of Azure AD Terms of Use:

  • Terms of Use for B2B guests—Most organizations have a process in place (whether it’s good or bad) for their employees to consent to their organization's terms of use and privacy statements. But how can you enforce the same consents for B2B guests when they’re added via SharePoint or Microsoft Teams? Using conditional access and Terms of Use you can now enforce a policy directly towards B2B guest users. During the invitation redemption flow, the user is presented with the terms of use.

Updates to Azure AD Terms of Use 5.png

 

  • Terms of Use for Azure Information Protection—Now, you can configure a conditional access policy to the Azure Information Protection app and require a terms of use when a user accesses a protected document. This will trigger a terms of use prior to a user accessing a protected document for the first time.

Updates to Azure AD Terms of Use 6.pngTerms of Use for Azure Information Protection. 

Updates to Azure AD Terms of Use 7.pngTerms of Use for Intune enrollment.

Check out the documentation on how to set up and configure Azure AD Terms of Use. Let us know what you think in the comments below. As always, we’d love to hear any feedback or suggestions you have.

 

 

Best regards,

Alex Simons (@Alex_A_Simons )

Corporate VP of Program Management

Microsoft Identity Division

6 Comments
Occasional Contributor
Great news, indeed! I'm wondering whether it's feasible to get terms of use for each user on his/her native language based on certain pre-defined configurable parameters? For instance, if user's language settings are set to Spanish or Chinese, then show them terms of use either on their preferred language or at least use both English version and translated version.
Microsoft

Hey Alexey,

 

An admin can upload multiple PDF documents and tag those documents with a corresponding language (up to 108). When end user signs in we look at the end users browser language preference and display the matching PDF, if there is no match we will display the default.

 

Thanks,

Joe

Regular Visitor

Hi, it's exciting to see the new updates.  The question I have is around the mention of Terms of Use for B2B Guests.   This is already available today via Conditional Access policies, I'd like to understand what has changed in the release mentioned above.  Does the TOU now appear at a different point in the flow, as the invitation redemption flow is mentioned?

 

 

 

Microsoft

Hi Simran,

 

The TOU would still appear in the same place during the B2B invitation redemption flow, but the new update is referring to leveraging the new "all guests" setting within conditional access rather then having to build a dynamic group.

 

Thanks,

Joe

 

Regular Visitor

This is a welcome change and we have begun piloting the Terms of Use acceptance CA policy during Intune enrollment with a few users. The biggest issue we have so far is scaling of the terms. We enforce users to expand the terms before they can accept, but many are complaining that the scaling of the text does not allow it to be easily read on mobile devices. Is there any way to fix that?

New Contributor

@Alex Simons (AZURE)do you have any ideas on how to leverage ToU for when users login to their Windows 10 devices? This would be a perfect tool with all it's audit logging etc. but currently it seems to be usable only in certain cloud apps via Conditional Access.

 

Any roadmap/(private) preview for such a feature?