Use Conditional Access to Secure Service Account with Global Admin Rights

Iron Contributor

Since I'm having issues trying to get MFA to work on Service Account/s


(New-ExoPSSession : AADSTS50076: Due to a configuration change made by your administrator, or because you moved to a new location, you must use multi-factor authentication to access '00000002-0000-0ff1-ce00-000000000000')


I was hoping that I can setup Condition Access to allow these service accounts without MFA to work only on certain Trusted IP range or specific IP Addresses.


Thank You,


1 Reply

You should have no trouble doing this, simply use the relevant conditions/exceptions in your policy.