What's conditional access?
|Applies to: Intune in the Azure portal|
|Looking for documentation about Intune in the classic portal? Read the introduction to Intune.|
Conditional access refers to ways you can control the devices and apps that are allowed to connect to your email and company resources. In this topic, learn about device-based and app-based conditional access, and find common scenarios for using conditional access with Intune.
Enterprise Mobility + Security (EMS) Conditional Access is not a standalone product, it’s a solution that takes part on all services and products that are part of the EMS. It provides granular access control to keep your corporate data secure, while giving users an experience that allows them to do their best work from any device, and from any location.
You can define conditions that gate access to your corporate data based on location, device, user state, and application sensitivity.
Conditional Access also extends its capabilities to Office 365 services.
Conditional access with Intune
Intune adds mobile device compliance and app management policies to support the EMS Conditional Access solution.
Ways to use conditional access with Intune:
Device-based conditional access
Conditional access for Exchange on-premises
Conditional access based on network access control
Conditional access based on device risk
Conditional access for Windows PCs
Bring your own device (BYOD)
App-based conditional access