Exclude Microsoft first party applications in Azure conditional access policy

Brass Contributor

We have app built on Microsoft Graph resource and we have a conditional access policy that targets all cloud apps. when users sign into this app using Chrome browser on iOS they get error and prompt to use Edge. We do not want users to change the browser and tried to exclude Microsoft Graph from CA policy using all options including API but fails with the below error.


Policy contains invalid applications: unsupported firstpartyapplication.


Is there a way to exclude Microsoft Graph from the policy?

0 Replies