For Conditional Access under Grant, is it possible to require MFA and either required client app or compliant device?
This would just be for iOS and Android devices.
Or would this end up being two polices like this:
1st Policy: Require MFA to access Exchange Online unless Device is compliant
2nd Policy: Require either Approved Client app or Compliant device