Microsoft Security | Microsoft Entra | Microsoft Entra ID
A cloud-based identity and access management service for securing user authentication and resource access
Conditional Access and MFA
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(153.6, 30%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBG%3C/text%3E%3C/svg%3E)
Britt Goode
1
Reputation point
I have created a conditional access policy to require MFA every hour from outside of our trusted networks. However, even on the trusted network Teams and Outlook will pop open the Okta windows for a second then close it again without going through the sign in. The policy is currently set as following:
Scoped to just my account
Cloud Apps are set to O365
Conditions
Device Platform Windows and MacOS
Locations Include Any and Exclude Trusted Networks
Frequency is set to 1 hour.
We do have the trusted networks setup correctly. I have confirmed this with other policies that rely on trusted networks and those function correctly. We have Okta integration that works correctly with other policies as well. Is there a way to stop the Okta window from opening every hour?
Microsoft Security | Microsoft Entra | Microsoft Entra ID
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 81%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
Marilee Turscak-MSFT 37,396 Reputation points Microsoft Employee Moderator2021-11-12T18:39:43.89+00:00 Do you have the conditional access policy set to "all apps"?
-
Britt Goode 1 Reputation point
2021-11-15T15:28:37.677+00:00 No, it is set to specifically target O365
Sign in to comment
Sign in to answer