Jan 22 2022 12:58 AM
Hi, starting yesterday we have been having issues signing into AVD. We have a CA policy in place restricting only hybrid joined devices access, when accessing AVD we are presented with error "You cannot get there from here. This application contains sensitive information and can only be accessed from Company XXX. Company XXX domain joined devices. Access from personal devices is not allowed.
This only started yesterday evening.
Jan 22 2022 01:03 AM
Jan 24 2022 07:23 AM
Jan 24 2022 07:38 AM
@DBR14 I rang Microsoft this morning, after waiting 15 minutes for them to answer I gave up. It's now say with our CSP to try and work out what's happened. Nothing has changed our side either, for now though I've had to disable the Hybrid joined CA policy otherwise no one can login!
Jan 24 2022 07:43 AM
@mdayton11 The workaround for us is when the user goes to sign in is to select "Use another Account" rather than the one cached and it works. But if you select the cached account, which is their work account it bombs on the CA Policy. I can't tell if this is the CA policy malfunctioning or if there's some health attestation issues. Everything looks peachy when I check the endpoint's status, fully compliant and marked Corporate so it should be a non-issue.
Jan 24 2022 07:49 AM
Jan 24 2022 07:52 AM