Thank you for reaching Microsoft Q&A Forum!
I understand that you would like to know about Conditional Access: Token protection feature for your mobile app.
The token protection for sign-in tokens in Conditional Access that this feature is currently in preview and has some limitations.
As of now the Token Protection feature in Conditional Access policy, is primarily designed for desktop applications on Windows devices and does not extend to mobile applications (iOS and Android) or using SSO with OAuth through Azure AD.
This preview supports the following configurations for access to resources with Token Protection Conditional Access policies applied:
- Windows 10 or newer devices that are Microsoft Entra joined, Microsoft Entra hybrid joined, or Microsoft Entra registered.
- OneDrive sync client version 22.217 or later
- Teams native client version 1.6.00.1331 or later
- Power BI desktop version 2.117.841.0 (May 2023) or later
- Visual Studio 2022 or later when using the 'Windows authentication broker' Sign-in option
- Office Perpetual clients aren't supported
Token Protection works by using the identity of the Entra ID joined device to ensure that tokens can only be used on that specific device.
For devices that are not Entra ID joined, such as personal devices that are not registered in your company’s domain, Token Protection may not be applicable.
For more information please Read: Conditional Access: Token protection
Public Preview: Token Protection for Sign-In Sessions
Hope this helps. Do let us know if you any further queries by responding in the comments section.
Thanks,
Akhilesh.
If this answers your query, do click Accept Answer
and Yes
for was this answer helpful. And, if you have any further query do let us know.