25,175 questions
Isnt it listed there?
Microsoft 365 Admin Center no longer included on Conditional Access Reauthentication Policy
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 69%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJM%3C/text%3E%3C/svg%3E)
Joseph Morgan
20
Reputation points
We have a Conditional Access policy in place that worked until recently, despite the policy not changing. The policy requires that administrators with access certain tools are required to reauthenticate every hour. The policy is set to include all cloud apps, with some exclusions listed below:
Office 365
AutoCAD
Custom-App
Custom-App
Microsoft Cloud App Security
Microsoft Flow
Microsoft Forms
Microsoft Intune
Microsoft Intune Enrollment
Microsoft Planner
Microsoft PowerApps
Microsoft Stream
Microsoft Teams
Office 365 Exchange Online
Office 365 365 SharePoint Online
Office 365 Yammer
Office Sway
Project Online
Custom-App
Skype for Business Online
We just realized today that we're no longer being forced to reauthneticate on the Microsoft 365 Admin Center / admin.microsoft.com. When looking at sign-in logs it says that the Conditional Access Policy isn't being applied. While it's not listed on the documentation, I wonder, is this now under the umbrella of the Office 365 option?
Is there a way to make sure that the admin center stays included in this policy, or another way to achieve the same goal?
Thank you for taking the time to help!
Microsoft Security | Microsoft Entra | Microsoft Entra ID
Microsoft Security | Intune | Other
5,571 questions
Accepted answer
-
Andy David - MVP 157.8K Reputation points MVP Volunteer Moderator2023-06-08T18:34:19.1866667+00:00 -
Joseph Morgan 20 Reputation points
2023-06-08T18:38:51.4633333+00:00 That's the main Microsoft 365 Portal, no? What I'm referring to is strictly the Admin Center, though that does lie within that portal so you're probably right. The other administrators and I all agree that this used to work as I described though and properly force the reauthentication on the Admin Center.
Was the Admin Center a recent addition? If so is there a way to target it explicitly?
-
Andy David - MVP 157.8K Reputation points MVP Volunteer Moderator
2023-06-08T18:58:54.0433333+00:00 If you can't pick as a specific app in the CA policy, then you typically cant target or exclude it because so much is integrated on the backend. I wish they had better granularity on so many of these.
Sign in to comment -