![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(240, 60%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EEA%3C/text%3E%3C/svg%3E)
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,638 questions
Hello @Erik Aronesty
Thank you for reaching out. I would like to confirm that currently Azure AD Conditional Access Policy does not support User Agent filtering or condition. Currently Azure AD Conditional Access Policy only supports filtering on the basis of conditions mentioned on following documentation: Conditional Access: Conditions.
Within Device Platform condition Azure AD identifies the platform by using information provided by the device, such as user agent strings. Since user agent strings can be modified, this information is unverified. Keep in mind that user agent filtering is not foolproof and can be easily bypassed by users who know how to modify their user agent. Therefore, it is important to combine device platform with Microsoft Intune device compliance policies or as part of a block statement. The default is to apply to all device platforms.
I hope this answer helps to resolve your issue. Please "Accept the answer" if the information helped you. This will help us and others in the community as well.