cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

conditional policy relaxation for a client-app

testuser7
Brass Contributor

‎Jun 24 2021 09:21 AM - last edited on ‎Jan 14 2022 03:26 PM by

‎Jun 24 2021 09:21 AM - last edited on ‎Jan 14 2022 03:26 PM by

conditional policy relaxation for a client-app

My OAuth client app is sending /authorize call to AAD with openid in the SCOPE

I have a conditional policy that says that access to any and ALL cloud-resource MUST be from COMPLIANT DEVICE.

 

I want to relax this policy only for this one and only client-application so that this client-app (web-app) can be hit from my personal device browser.

All other client-apps must  comply with COMPLIANT DEVICE policy.

 

Can I do that ?


Thanks.

374 Views
0 Likes
1 Reply
Reply
1 Reply
pvanberlo

‎Jun 27 2021 09:19 PM

‎Jun 27 2021 09:19 PM

Re: conditional policy relaxation for a client-app

You can edit your Conditional Access policy and exclude this specific app from the policy that requires managed devices. You do this by editing the policy, selecting ‘Cloud apps or actions’ and then the ‘Exclude’ tab. Here you can select any apps that have been registered in your directory/tenant and to which this policy shouldn’t apply.
0 Likes
Reply