Forum Discussion
Condititional Access blocks access to AAD Management portal
Hi, I’m trying to build CA policy with a block all, unless policy. Therefore I have setup a block all rule, and with an exception of the ‘Microsoft Azure Management’ cloud application. The second ...
Have you selected "All cloud apps" in the first block rule?
If so, what happens if you edit the rule to block only the cloud apps that are selectable in the list?
As is mentioned in the documents below, not all Azure services are onboarded for conditional access, so maybe there is some backend service that is required to access Azure AD, that is currently being blocked?
One would think that the service in question would show up in the sign in logs as being blocked though..
https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/concept-conditional-access-cloud-apps
Yeah, I agree that there's probably something backend causing this and was thinking about it in the same way, but too lazy doing just that 🙂 Will probably do some more testing when work allows for it.
