Mozilla Firefox Incompatible with conditional access and session control policies??

Micah-Omayio 41 Reputation points
2021-08-16T06:44:09.143+00:00

Hey all,
I am testing some DLP features on Cloud App security using conditional access and session control policies.
The idea is to block file download and share on non-managed devices for browser access.
This seems to work on IE, Chrome & Edge but doesn't work with Firefox i.e. devices using Firefox are treated as non-managed even they are managed.
All the policies work fine with IE, Chrome & Edge and i am able to differentiate between managed and non-managed devices and correct policies applied.

Anyone who has encountered such a problem before? Any Fix?

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,780 questions
0 comments No comments
{count} votes

Accepted answer
  1. VipulSparsh-MSFT 16,236 Reputation points Microsoft Employee
    2021-09-23T06:03:11.197+00:00

    @Micah-Omayio Thanks for reaching out and sincere apologies on this.

    For Windows 10, you can use this SSO feature and try to perform the CA : https://support.mozilla.org/en-US/kb/windows-sso
    For others platform like windows down level device, IOS and Android this is still not supported.

    The way any device is identified for CA, is by accessing the Device Auth Cert from the machine store on device and presenting them to the Azure AD, Mozilla browser does not have a way of doing it currently and fails to perform the CA process.

    -----------------------------------------------------------------------------------------------------------------

    Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.


0 additional answers

Sort by: Most helpful