cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Tech Community Live: Microsoft Intune
Jun 22 2023, 07:30 AM - 11:30 AM (PDT)
Microsoft Tech Community
Find out more
SOLVED

Condition Access Question

Quinn Wade
Occasional Contributor

‎Feb 06 2019 08:34 PM

‎Feb 06 2019 08:34 PM

Condition Access Question

Quick question. Hoping this is a simple answer. As begin to prepare and test moving more devices into Intune we have been would like to test Conditional Access of course. Unfortunately myself and another colleague (Intune Administrators) are presented with an access denied msg when clicking on CA. Does a user have to be a Global Admin to configure CA policies?
Labels:
626 Views
0 Likes
1 Reply
Reply
1 Reply
best response confirmed by Jan Ketil Skanke (MVP)
Jörgen Nilsson

‎Feb 06 2019 10:36 PM

‎Feb 06 2019 10:36 PM

Solution

Re: Condition Access Question

Hi,

As Conditonal Access is an Azure AD Service you need a RBAC role in AzureAD to be able to manages Conditonal Access settings, "Conditional Access Administrator: Users with this role have the ability to manage Azure Active Directory conditional access settings."

With that in place you should be able to manage CA rules.

https://docs.microsoft.com/en-us/azure/active-directory/users-groups-roles/directory-assign-admin-ro...

Regards,
Jörgen

1 Like
Reply