Forum Discussion
Conditional access, all cloud apps, device compliance
Hi, We have company windows devices managed by intune with a compliance policy. I want to prevent non-compliant devices from accessing any application including all Microsoft cloud apps and third...
All cloud app include third-party SaaS apps integrated with Azure AD. (not all Microsoft apps are onboarded to CA Policies, there are some Micro services, which does not cover).
You need to exclude Microsoft Intune Enrollment from this policy.
I suggest you go for deployment in phased manner,
- In the fist phase, keep the policy in report only mode and analysis the data, particularly who are blocked by this policy and understand why.
Phase 2 - Enable the policy for a group of users, (mostly your team members or IT Staff)
Phase 3 - Enable policy for larger group
Phase 4 - Enable for all
You need to exclude Microsoft Intune Enrollment from this policy.
I suggest you go for deployment in phased manner,
- In the fist phase, keep the policy in report only mode and analysis the data, particularly who are blocked by this policy and understand why.
Phase 2 - Enable the policy for a group of users, (mostly your team members or IT Staff)
Phase 3 - Enable policy for larger group
Phase 4 - Enable for all