Conditional access

Conditional access is a Microsoft security feature that lets you control and limit access to corporate resources and applications based on certain conditions.

Conditional access with Microsoft Intune helps organizations protect their resources by limiting access to users and devices, in line with corporate security policies. This approach strengthens information system security by reducing the risk of unauthorized access or data compromise.

Conditional access allows you to :

• Create conditional access policies via the EndPoint and Azure AD management console. These policies define conditions for access to corporate resources, such as the user's geographic location, device compliance status or the need for multi-factor authentication.
• Assign conditional access policies to appropriate user and device groups within the organization.
• Evaluate the conditions defined in conditional access policies, when a user attempts to access a resource or application.
• Deny access if the user and their device do not meet the required conditions, or prompt the user to provide additional authentication information, such as multi-factor authentication verification.