cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED

Allow SSPR only from Azure Joined Windows Devices

RahamimL
Regular Contributor

‎May 03 2022 10:48 PM

‎May 03 2022 10:48 PM

Allow SSPR only from Azure Joined Windows Devices

Hi everyone,

 

We want to use SSPR only from specific devices. I don't talk about registration.

The point is to use this link and deny SSPR from devices by using conditional access.

 

Any ideas?

 

Rahamim.

646 Views
0 Likes
3 Replies
Reply
3 Replies
rahuljindal-MVP

‎May 03 2022 11:50 PM - edited ‎May 03 2022 11:52 PM

‎May 03 2022 11:50 PM - edited ‎May 03 2022 11:52 PM

Re: Allow SSPR only from Azure Joined Windows Devices

Hi. You can enable the SSPR CSP policy and deploy it to a group containing only Azure AD devices.

 

As for using CA to deny SSPR, what is the exact scenario?

0 Likes
Reply
RahamimL

‎May 03 2022 11:59 PM

‎May 03 2022 11:59 PM

Re: Allow SSPR only from Azure Joined Windows Devices

I want to allow users to reset their password from their Azure joined computers only. Not from a smart phone or a non Azure joined devices.
0 Likes
Reply
best response confirmed by RahamimL (Regular Contributor)
rahuljindal-MVP

‎May 04 2022 12:21 AM

‎May 04 2022 12:21 AM

Solution

Re: Allow SSPR only from Azure Joined Windows Devices

Don't think this functionality exists at the moment. At best you can restrict registration to a known location using CA, but that's about it.
0 Likes
Reply