Hello,
I have 50 users with Business Standard licences and one Global Admin account with a Business Premium licence.
I need to disable "persistent browser session" for only one user with (who have Business Standard licence), so that every time he opens shared to him document from sharepoint online he has to perform a 2FA login. Other users should still be able to persistent browser session.
As far as I know, to achieve this I need to enable "conditional access", for which I need to disable "security defaults"
If I understand correctly, such an operation will have an effect on the entire tenant and by disabling the "free" security defaults, I will lose for other users the possibility of using the conditions included in it, such as:
- Requiring all users to register for multifactor authentication
- Requiring administrators to do multifactor authentication
- Requiring users to do multifactor authentication when necessary
- Blocking legacy authentication protocols
- Protecting privileged activities like access to the Azure portal
Can I achieve this or a similar effect without having to switch all other Business Standard users to licences containing Entra ID P1 ?