Microsoft Tech Community Live: Surface Edition
February 15, 2022, 08:00 AM - 12:00 PM (PST)

Identifying a Hub in ADFS conditional access rules?

Occasional Contributor

Our 365 tenant uses ADFS to authenticate. ALso Hubs are managed by Intune. When the Hubs are wired to our company LAN, the ADFS conditional access succeeds since we've whitelisted the NAT public IP address(s) they present on.


We sometimes use our Hubs on public wifi and this is causing a problem. We want our ADFS rule to be something like - ((Device is Surface Hub) and (IsManaged is True)). But we can't find anything we can test that distinguishes a Hub from any Windows 10 machine. We expected the Hub would present a specific version of the Windows 10 OS but but seems not...

0 Replies