Adjust conditional access

If you use conditional access policies in your organization, you'll have to set them to exclude certain accounts so that Microsoft Managed Desktop can work properly.

To do this, follow these steps:

  1. Refer to the "Rollback steps" section of How To: Plan your Conditional Access deployment in Azure Active Directory.
  2. Follow the steps there to exclude the Modern Workplace Service Accounts group for all policies.

If you have any difficulty with conditional access, contact admin support.

Steps to get started with Microsoft Managed Desktop

  1. Add and verify admin contacts in the Admin portal
  2. Adjust conditional access (this topic)
  3. Assign licenses
  4. Deploy Intune Company Portal
  5. Enable Enterprise State Roaming
  6. Set up devices
  7. Get your users ready to use devices
  8. Deploy apps