none
Azure Multi-Factor Authentication with Conditional Access policies RRS feed

  • Question

  • hello Everyone,

    Just have a quick question I have a client that wants to set up MFA with conditional access, but has not yet configured ad connect. He wants to start with all mobile devices to be prompted no matter what. i am just curious for this to work does the devices need to be enrolled into intune and of course have azure AD Premium P1

    thanks

     

    Friday, May 15, 2020 2:55 PM

All replies

  • For enrollment related, Conditional Access is a capability of Azure Active Directory, not of Intune. Therefore, there is no need to enroll device to Intune, this policy can target all guest and external users.

    For license related, although it has nothing to do with Intune License. However, as you said you must assign Azure AD Premium license to the Azure AD user accounts, so that the Conditional Access works with the accounts.

    You can refer to the following documentation for more details about Conditional Access.

    https://docs.microsoft.com/en-us/azure/active-directory/active-directory-conditional-access-azure-portal-get-started

    Best regards,

    Cici


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Monday, May 18, 2020 2:26 AM
  • I am just writing to see if this issue has any update. Also, for the problem, is there any other assistance we could provide?

     

    If anything is unclear, please feel free to let me know.

     

    Best regards,

    Cici Wu


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Friday, May 22, 2020 3:15 AM