Common Conditional Access policies

Baseline protection policies are great but many organizations need more flexibility than they offer. For example, many organizations need the ability to exclude specific accounts like their emergency access or break-glass administration accounts from Conditional Access policies requiring multi-factor authentication. For those organizations, the common policies referenced in this article can be of use.

Conditional Access policies in the Azure portal

Emergency access accounts

More information about emergency access accounts and why they are important can be found in the following articles:

Typical policies deployed by organizations

Next steps