question

DanLara-8010 avatar image
0 Votes"
DanLara-8010 asked LuDaiMSFT-0289 commented

How can I exclude Managed Identity sign-ins from a Conditional Access Policy

I need to block user access to the Azure Portal and require MFA for allowed admin users. When I run the What if test on a Managed Identity sign-in account, the policy is blocking access to Azure Portal application. The Managed Identity accounts do not show up in the Workload Identities list.

azure-ad-conditional-accessmem-intune-conditional-access
· 1
5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

LuDaiMSFT-0289 avatar image LuDaiMSFT-0289 ·

@DanLara-8010 Thanks for posting in our Q&A. Conditional access with MFA is more related to Azure AD. So, I will add Azure-ad-conditional access tag. Let's wait for the Azure AD support engineer involved in this issue. Thanks.

0 Votes 0 ·

0 Answers