Share via

Can you restrict authentication to an Azure Active user directory account based on a unique ID tied to a mobile device?

SwiftConnect 20 Reputation points
2023-11-07T14:50:32.4933333+00:00

Can we restrict authentication to an Azure Active user directory account based on a unique ID tied to a mobile device, such as a device id, serial number, or MAC address?

The goal would be to restrict authentication to an enterprise application (OIDC) to only approved devices.

Please advise.

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,902 questions
0 comments
Accepted answer
  1. Akshay-MSFT 17,871 Reputation points Microsoft Employee
    2023-11-08T12:50:47.0233333+00:00

    @SwiftConnect

    Thank you for posting your query on Microsoft Q&A, from above description I could understand that you want to block access to Azure application based upon MAC address of the devices.

    Please do correct me if this is not the case by responding in the comments section.

    Azure AD does not collect Mac ID, serial number or IMEI of the mobile device upon registration however it does assign a device ID when registered via company portal app (Microsoft Intune)

    • Once registered a unique device ID is associated with each device.
    • You can create a device group with those unique device ID

    User's image

    Thanks,

    Akshay Kaushik

    Please "Accept the answer" (Yes), and share your feedback if the suggestion answers you’re your query. This will help us and others in the community as well.

    0 comments

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.