Azure AD Conditional Access Policy Implementation

Dilan Nanayakkara 1,111 Reputation points
2021-07-02T13:48:57.25+00:00

Hi All,

I am planning to implement Conditional Access policies and I was wondering what are the license requirement for that.

I have check the Azure AD license status and it is showing as a Azure AD Premium P1. however when I go to licenses that purchased below are the licenses available for us in our tenant.

  • EMS E3 (100+ licenses)
  • M365 E3 (60+ licenses)
  • Office E1 (70+ licenses)
  • Office E3 (80+ licenses)
  • Business Basic (100+ licenses)

I was wondering whether I have to buy separate Azure AD Premium P1 licenses since Conditional Access are available for P1 or since Azure AD showing as Premium P1, can we go ahead and implement Conditional Access for all users.

Please also note, we don't any sperate licenses like Azure AD P1 or P2 in our licenses pane.

below is the screenshot for license showing in Azure AD Active Directory.

111412-2021-07-02-18-58-11.jpg

Thanks,
Dilan

Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
4,406 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,664 questions
0 comments
Accepted answer
  1. Lu Dai-MSFT 28,356 Reputation points
    2021-07-05T02:02:27.333+00:00

    @Dilan Nanayakkara Thanks for posting in our Q&A.

    Based on my understanding, all users using the conditional access policy need to have an Azure AD Premium license. Azure AD Premium may be purchased stand-alone or a part of the bundled Enterprise Mobility and Security Suite. So, if the Azure AD Premium license is included in Enterprise Mobility and Security Suite, we don't need to buy separate one.
    111570-image.png

    Hope it will help.

    If the response is helpful, please click "Accept Answer" and upvote it.
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Parvez Gadhia 1 Reputation point
    2021-07-06T03:03:26.43+00:00

    Go to Portal.azure.com --> click on view on Manage Azure Active Directory --> Licenses --> All Products --> Select Enterprise Mobility + Security E3 --> On the left side --> click service plan details, and you would see if P1 license is bundled with your office E3 license.