Share via

Unable to exclude the CMG Server App from Conditional Access Policies

AHwang Admin 5 Reputation points
Oct 9, 2024, 8:13 PM

We have setup the Cloud management gateway in SCCM, but are unable to exclude the CMG Server App from any conditional access policies as it is nowhere to be found when searching for the app under enterprise apps. Looking online, it appears others have encountered the same issue. Does anyone know how to work around this as Microsoft has a note in this document saying the app must be excluded from all CA policies - https://learn.microsoft.com/en-us/mem/configmgr/core/servers/deploy/configure/azure-services-wizard#create-server-application-dialog

Thanks!

Alvin

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
23,784 questions

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Navya 16,775 Reputation points Microsoft External Staff
    Oct 16, 2024, 9:48 AM

    Hi @AHwang Admin

    Thank you for posting this in Microsoft Q&A.

    I understand you are trying to exclude the CMG Server Application from Conditional Access Policies, but it was not present under the excluded conditional access policies.

    Can you please confirm have you created the Server Application in Microsoft Entra ID, as mentioned in this document

    I have created the Server Application in Microsoft Entra ID and was able to exclude that application in the conditional access policy.User's image

    User's image

    Hope this helps. Do let us know if you any further queries.

    Thanks,

    Navya.

    If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.