Only want to grant limited BYOD access to the resources.

Testa 551 Reputation points


I want to use conditional access to allow access only to organization-managed devices (Intune or Hybrid AAD join), and then allow additional access for BYOD only to the laptops or PCs authorized by the IT administrator. We have P2 licenses.

1, what options do we have to achieve?

2, what is the best way to do this?

Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
4,055 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
18,615 questions
0 comments No comments
{count} votes

Accepted answer
  1. Konstantinos Passadis 16,551 Reputation points

    Hello @Taka !

    For the first it is quite clear

    The conditional access policy that needs Compliant Devices is the solution

    User's image

    Now for the Second one , it depends , What are the autorization criteria ?

    CA have the option for Filters as seen below, you can apply a specific Extension attribute for example !

    User's image

    I hope this helps!

    Kindly mark the answer as Accepted and Upvote in case it helped!


0 additional answers

Sort by: Most helpful