Hello,
I've tried to setup Enterprise Application for SAML authentication (Azure AD) for Cisco AnyConnect users.
Everything is working fine. Users are able to authenticate without any problem.
Then I saw that there is option for conditional access and option to allow only Intune compliant devices to make vpn connection with SAML authentication. I've enable this, and I was surprised "it works". But solution is not complete because when non-compliant devices try to make SAML authentication users have a very confusing message, user is asked to signin via Edge browser...
I've tried to find if there is any solution for custom this message (see attached image)

On some places I've found that there is maybe options to do it via Microsoft Defender (admin center) and Access/Session policy, but I am not able to add created SAML Application Cisco AnyConnect to the list of applications and because of that there is no option to create custom application in Microsoft Defender.
I've tried to make something like this to customize message on the image, but just for SAML Conditional Access for Intune non-compliant devices:
https://www.satisnet.co.uk/post/custom-policies-in-microsoft-cloud-app-security-mcas
Any suggestion?
Any possibility to customize the message on the image?
Thanks
JC