Entra ID feature that controls access based on conditions like user location, device compliance, and risk level.
Conditional Access is a Microsoft Entra ID capability that enforces access decisions based on signals—who is signing in, from where, on what device, and the risk level detected. Policies can require MFA for risky sign-ins, block access from untrusted locations, require compliant devices for sensitive applications, or limit access to specific IP ranges. Conditional Access is fundamental to Zero Trust implementation, enabling 'never trust, always verify' in practice.
Why It Matters
The DSC Perspective:
Conditional Access transforms basic authentication into intelligent, context-aware access control. It enables policies like 'require MFA when outside the office' or 'block access from high-risk countries' without manual intervention.