Setup conditional access
- A Microsoft Intune subscription.

Click
Device compliance
> Policies

Click
Create Policy
Set
Platform
to iOS/iPadOS
or Android Enterprise
depending on your use case.Click
Settings
> Device Health
Set
Require the device to be at or under the Device Threat Level
to Secured
. This setting will determine the tolerable device threat level as dictated by BETTER MTD's threat evaluation. You may set the value to other than
Secured
at your own discretion.
Click
OK
> OK
> OK
> Create
. Now assign the policy to the relevant users/groups and you're done.

Click
Conditional access
> New Policy
Click
Conditions
> Sign-in risk
Set
Configure
to Yes
Set the Sign-in risk to
No risk

Click
Select
> Done
.png?alt=media&token=6ca33b6e-10ee-4ddb-82a7-60d7509872ec)
Click
Grant
Select
Grant access
& Require device to be marked as compliant
.png?alt=media&token=2386723d-9269-473f-84c2-65196a9732ab)
Click
Select
Set
Enable policy
to On
to put the policy into effect upon creation..png?alt=media&token=00e7ef4b-3322-421c-b1d2-0dc47ab992c0)
Click
Create
. Now assign the policy to the relevant users/groups and you're done..png?alt=media&token=dc00b5b7-1542-468a-a95c-319c46478308)
Last modified 2yr ago