1 minute reading time (176 words)

Conditional Access Policy Exclusions

You should always add exclusions to conditional access policies to ensure that a misconfigured policy doesn't accidentally lock you out of your own Azure tenant.

Create an Active Directory group for Exclusions

Create an AD Group to use for policy exclusions and add any users you want to exclude from the policy to the group.

Example AD Group: CAP Azure Exclude from CA

Example Conditional Access Policy: Exclude users and groups

AD group for Exclusions: CAP Azure Exclude from CA
Your own global admin account used when creating the policy

Related Posts



No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Saturday, 23 September 2023
You can help support this website by buying me a coffee!
Buy Me A Coffee