I can confirm that the commands in the link below worked for me. You just have to make sure you include -Environment USGov when connecting.
"Azure Windows VM Sign-In" cloud app missing in Azure Gov
I can't find the "Azure Windows VM Sign-In" cloud app in Azure Gov to exclude in a Conditional Access Policy for MFA.
For reference, that cloud app is in the Microsoft documentation: https://learn.microsoft.com/en-us/azure/active-directory/devices/howto-vm-sign-in-azure-ad-windows#using-conditional-access
4 additional answers
Sort by: Most helpful
-
John Leto 1 Reputation point
2021-11-04T13:18:56.827+00:00 Same issue here. Trying to log in to a newly created VM and can't. Instead of "Azure Windows VM Sign-In" I did find the VM by name and added it to exclusions but it still isn't working.
-
Michael 86 Reputation points
2022-04-27T15:27:49.033+00:00 Did you ever find a solution to this? I'm running into the same thing.
-
Daniel Otero 6 Reputation points
2022-06-08T15:10:51.547+00:00 BUMP! Running into this exact same situation and can't locate "Azure Windows VM Sign-In" in the cloud apps. Trying to exclude it from my MFA Conditional Access rule in order to allow sign-in without activating Windows Hello for Business.
@Nicholas Hughes what workarounds did you implement?
-
Shane Curtis 36 Reputation points
2022-08-23T15:17:33.647+00:00 Yeah, I missed it on my first 3 read throughs (probably because the beginning of the section only mentions VERIFYING that the enterprise app is there) but the instructions are there for adding the app to the enterprise apps list. I haven't tried them out yet but I'm encouraged by the comments I'm seeing here.
If this command results in no output and returns you to the PowerShell prompt, you can create the service principal with the following Graph PowerShell command:
New-MgServicePrincipal -AppId 372140e0-b3b7-4226-8ef9-d57986796201
Successful output will show that the Azure Windows VM Sign-In app and its ID were created.