Configuring Conditional Access Policies for Risky Users

Views:

By integrating with Microsoft Azure AD Conditional Access, Cloud App Security allows you to control risky users' access to resources by configuring conditional access policies. Cloud App Security synchronizes the policies to Azure AD, which applies the corresponding actions on the users when they attempt to access apps.

Important:

Before you proceed, make sure the following requirements are met:

You have provisioned a service account for Microsoft Identity Protection.
You have not enabled security defaults in Azure AD. Microsoft does not support using Conditional Access and security defaults simultaneously. For more information, see Microsoft documentation.

Go to Administration > Global Settings > Conditional Access Policies for Risky Users.
Click a policy name.
In the Available Targets area, select one or multiple targets, and add them to the Selected Targets area.
By default, the Available Targets area displays Top Users with High Risk Events, which are all the users in the dashboard widget Top 5 Users with High Risk Events detected over the last 24 hours, last 7 days, and last 30 days.

To search for other users, type an email address and click Search.
Click Save.
The policy will be synchronized to Azure AD.