Conditional access policies are the key driving force behind the Office 365 zero-trust architecture. Here, understanding CA policies & ensuring they are configured correctly is more crucial!
Otherwise, it will severely impact your Office 365 environment. So it is more important to stay up-to-date on the conditional access policy changes and actions taken in your organization.
Yet when coming to monitoring conditional access policy events, Microsoft showed us many ways!
1. Analyze Sign-in behaviors due to CA policies using Azure AD Sign-in logs.
2. Discover What’s Happening in CA policies using Azure AD Audit logs.
3. Use Azure AD Conditional Access insights and reporting workbook.
4. Get CA policies using Azure log analytics query auditing.