Share via

Two Microsoft managed conditional access policies are missing.

LeRoy, Kevin 125 Reputation points
2024-03-01T19:05:28.24+00:00

Hello There,

There's only one of the Microsoft managed conditional access policies added to the tenant. The Microsoft managed conditional access policies are:

Multifactor authentication for admins accessing Microsoft Admin Portals – was added to tenant.

Multifactor authentication for per-user multifactor authentication users – not yet seen in tenant.

Multifactor authentication and reauthentication for risky sign-ins – not yet seen in tenant.

Will those two policies be added to the tenant later, or will they not be added because the tenant doesn't meet the requirements in this case?

The tenant has a P2 license.

Microsoft Security | Microsoft Entra | Microsoft Entra ID
0 comments
Accepted answer
  1. Michael Morten Sonne 605 Reputation points MVP
    2024-03-03T21:00:17.9766667+00:00

    If the tenant have other conditional access policies there do the same, it will not be added to the tenant.

    As I had understand it (and what I see in my own tenant) also.

    1 person found this answer helpful.
    0 comments

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Marcin Policht 50,495 Reputation points MVP Volunteer Moderator
    2024-03-01T21:00:14.4766667+00:00

    As per https://learn.microsoft.com/en-us/entra/identity/conditional-access/managed-policies

    Microsoft will enable these policies after no less than 90 days after they're introduced in your tenant if they're left in the Report-only state. Administrators might choose to enable these policies sooner if they wish.

    hth

    Marcin

    1 person found this answer helpful.
    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.