Share via

Azure Conditional Access Policy and Licensing

rr-4098 2,051 Reputation points
2023-10-10T03:29:12.6433333+00:00

We currently have Azure AD Free \ Basic. We would like to bock Azure login from specific regions. Under named locations I see a policy called Blocked Countries already listed which is what I want and can edit. I did notice I cannot create new named locations or policies. Can I update the Blocked Countries policies or do I need we need to purchase Azure AD P1 to do what we need?

Microsoft Security | Microsoft Entra | Microsoft Entra ID
Microsoft Security | Microsoft Entra | Other
0 comments
Accepted answer
  1. Akhilesh Vallamkonda 15,320 Reputation points Microsoft External Staff Moderator
    2023-10-10T05:53:48.2633333+00:00

    Hi @rr-4098

    Thank you for reaching us!

    I understand your concern about named locations and policies.
    To answer your question yes, to create new locations and custom policies you need the Microsoft Entra ID P1 or P2 license.
    The reason you are able to edit the listed Blocked Countries policies is a predefined policy for all tenants that do not require a premium license. 

    To explore the features of the Microsoft Entra ID P1 or P2 license you can activate the trial version.

    Reference:  https://www.microsoft.com/en-us/security/business/microsoft-entra-pricing
    https://learn.microsoft.com/en-us/answers/questions/542955/i-need-to-activate-free-trail-premium-p2-free-tria

    Thanks,
    Akhilesh.

    Please Accept the answer if the information helped you. This will help us and others in the community as well.

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.