Forum Discussion
Autht cloud app security
Hello
I have setup an authentication context and published it to CA polices. The Authentication Context name is "trusted device". I created the CA policy per below . When i log into the application from a non trusted device, and do a copy and or paste, i should be getting prompted from cloud app security to step up authentication, but i dont. Any help is greatly appreciated
In cloud app security i created session policy , category = "Compliance". Below are the settings
He doesn't explicitly mention it indeed. But if you look at the screenshots near the end of the article, you can see the second policy above the MCAS policy screenshot. Underneath the screenshot he mentions: You also need session policy to be enabled on conditional access targeting apps
- Your conditional access policy doesn't need the conditional access app control setting. The policy will be triggered based on authentication context from the session policy in MCAS
- Okay, but that shouldn't be the reason why the session policy in cloud app security is not working. Also if you want the app to show up in cloud app security , you need a CA policy that has "use conditional access app control" selected. If not the app will never be available in cloud app security
If needed, you can always manually add an app to MCAS if you have the required information. You don't necessarily need to use conditional access app control. But for now that's not relevant.
Have you tried both Cornerstone and the Admin Center? Which browser did you use when testing? And what do the MCAS and Signin Logs tell you?
