Great video and simply covered critical areas. One question:- How assigning/linking a DLP session policy to a Conditional access policy? We can create many custom DLP policies, in that case how a CA policy identifying which DLP policy is belongs to respective CA policy? Thanks.
This is a great video to start with. Thank you! I have a query. is this used to control only business apps? like in this case there are users who access onedrive personal account on managed devices. Can we control file upload on personal onedrive from managed devices using the browser?
Great video. I would liek to know how can we apply this policy for Domain joined machines instead Intune and AAD Hybrid joined devices. Aso I am not getting Domain joined machine option in Device filter .
Great Video..I have few queries....in Conditional Access to configure the app control as Monitor instead of custom policy we need MCAS to be enabled on our tenant?? Is it just to use Custom policy we need MCAS?? To use Conditional Access app control feature itself we need MCAS to be enabled ??
I completely agree, Conditional Access app control require licenses, I was referring to app enforced policy option. But anyways thank you so much, for bringing these details, this means alot and it helps other viewers as well. Thanks Priyanka.
No, currently session control policies are only applicable to browser, for rich client applications access policy is created, but that will just block/allow access based on a specific device like corporate owned or not. Session control for rich client may be announced in future.
@@ConceptsWork I have a doubt here..we r creating CA policy in Azure Ad portal .Also we r creating the activity type in session policy where we have option to select apps, conditions etc... My query is if we select ALL CLOUD APPS in Azure Ca policy, but in session policy we give only teams so which policy will override?? Also in session policy we have options to provide conditions..
The clients must be able to communicate with all the endpoints listed here - docs.microsoft.com/en-us/cloud-app-security/network-requirements Yes, you can define outbound rules on the firewall.