Share via

Requiring Organization-managed devices to access for specific application

SR VSP 1,251 Reputation points
2021-10-29T16:28:37.74+00:00

Team,

I would like to create a Conditional access Policy for the below can you advise on this ?

"Requiring Organization-managed devices to access (Grant) for specific application like Microsoft Dynamics Finance and Operations, All Microsoft Admin and Security Consoles"

Some of the devices are not complaint. So how can we make the condition satisfied can we use any custom addtional attributes . PFA sample snapshot

145038-app-controls.jpg

Microsoft Security | Microsoft Entra | Microsoft Entra ID
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Vipul Sparsh 16,336 Reputation points Microsoft Employee Moderator
    2021-11-08T08:28:31.95+00:00

    @SR VSP Thanks for reaching out and apologies for delay on this.

    Since you mentioned few of the non compliant devices also needs to pass in this conditional access rule, so you would not be able to use the Device Compliance state anyway.
    You can surely use the "Filter for devices" option to select those devices, do note if the devices list are big you might need to add them one by one or if they follow any particular naming format you can also use queries like DisplayName starts with "" for multiple devices (just an example).

    Let me know if you want to discuss more.

    -----------------------------------------------------------------------------------------------------------------

    Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.

    1 person found this answer helpful.
    0 comments

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.