Home

Conditional access policy without Client Apps condition

%3CLINGO-SUB%20id%3D%22lingo-sub-801629%22%20slang%3D%22en-US%22%3EConditional%20access%20policy%20without%20Client%20Apps%20condition%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-801629%22%20slang%3D%22en-US%22%3E%3CP%3EIs%20it%20required%20to%20configure%20'Client%20apps'%20condition%20in%20a%20policy%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWhen%20'client%20app'%20condition%20isn't%20configured%2C%20it%20says%20'policy%20applies%20to%20browser%20and%20modern%20auth%20apps'.%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20note%20that%20this%20condition%20is%20still%20in%20'%3CSTRONG%3Epreview%3C%2FSTRONG%3E'.%20Would%20anyone%20know%20the%20impact%20of%20changing%20a%20policy%20%3CSTRONG%3Eenforcing%20MFA%3C%2FSTRONG%3Ethat%20has%20'client%20app'%20condition%20not%20configured%20to%20a%20policy%20that%20configures%20this%20and%20includes%20all%20the%20client%20apps%20i.e.%20Browser%2C%20Modern%20Auth%20Client%20and%20Other%20clients.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-801629%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAzure%20AD%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EConditional%20Access%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Emfa%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-801948%22%20slang%3D%22en-US%22%3ERe%3A%20Conditional%20access%20policy%20without%20Client%20Apps%20condition%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-801948%22%20slang%3D%22en-US%22%3E%3CP%3EIt's%20explained%20in%20the%20documentation%3A%26nbsp%3B%3CFONT%20style%3D%22background-color%3A%20%23ffffff%3B%22%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory%2Fconditional-access%2Fconditions%23client-apps%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory%2Fconditional-access%2Fconditions%23client-apps%3C%2FA%3E%3C%2FFONT%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E
Gurdev Singh
Contributor

Is it required to configure 'Client apps' condition in a policy?

 

When 'client app' condition isn't configured, it says 'policy applies to browser and modern auth apps'. 

 

I note that this condition is still in 'preview'. Would anyone know the impact of changing a policy enforcing MFA that has 'client app' condition not configured to a policy that configures this and includes all the client apps i.e. Browser, Modern Auth Client and Other clients.

 

 

1 Reply
Related Conversations
Tabs and Dark Mode
cjc2112 in Discussions on
35 Replies
Extentions Synchronization
Deleted in Discussions on
3 Replies
Security Community Webinars
Valon_Kolica in Security, Privacy & Compliance on
9 Replies
flashing a white screen while open new tab
Deleted in Discussions on
14 Replies