Common Conditional Access policies

Security defaults are great for some but many organizations need more flexibility than they offer. For example, many organizations need the ability to exclude specific accounts like their emergency access or break-glass administration accounts from Conditional Access policies requiring multi-factor authentication. For those organizations, the common policies referenced in this article can be of use.

Conditional Access policies in the Azure portal

Emergency access accounts

More information about emergency access accounts and why they are important can be found in the following articles:

Typical policies deployed by organizations

* These four policies when configured together, mimic functionality enabled by security defaults.

Additional policies

Next steps