Support exporting and importing conditional access policies using PowerShell
Support exporting and importing conditional access policies using PowerShell. This would be handy for backup purposes, but also for re-use of the same policy rules between test and production tenants.
The Microsoft Graph API currently do not have any REST APIs for accessing and creating conditional access policies: https://developer.microsoft.com/en-us/graph/docs/api-reference/beta/resources/intunegraphoverview
We’ll be wrapping up work soon, after making updates from feedback we’ve received so far. We should have a public date soon.
Nicola Suter commented
I built an open source tool which let's you export and import conditional access policies with a web-based multi tenant app. The project is available on GitHub: https://github.com/nicolonsky/ModernWorkplaceConcierge
Mahmoud Ziada commented
Hi AAD Team, when can we expect some beta testing for this?
Joeri Vanderheyden (Admin Account) commented
Hi Azure AD Team, any update on this?
Daniel Chronlund commented
Conditional Access management with Microsoft Graph is now in the beta API.
I've written a blog post with a proof of concept/sample script on how to automatically deploy a Conditional Access policy design with PowerShell.
Also curious about an update... any news?
Tijmen Schoemaker commented
Hi Azure AD Team, any updates on this? Last update is from July 15th, it's 16th of Ocotober.
Any update on this yet?
Hi Caleb, any more updates for this? Happy to be part of any "previews" this would be of great help in managing our CA policies and keeping versioning at the very least.
I need this more than oxygen. How is this progressing?
Hi caleb. How is this going? Any update since July. Would like to version conditional access policies as code. Or a least diff current config compared to expected config to test if it's changed
Sooo.. How far along are you?
Dave Morin commented
Any update on this ? We really need this as soon as possible.
Andy Liggett commented
Hi, Any update on this?
Avila, Jason commented
I would really appreciate an update on this!!!
Jean-Michel Roberts commented
When are these PowerShell commands for PowerShell coming out please?
Raf Cox commented
any update on this?
Programmatic access to Conditional Access "what if" would enable automated testing of the aggregated effect of policies, using Pester for example. Eg non-approved app on intune compliant phone should be blocked (take that bluemail).
Any ETA for this? We really need the ability to dynamically update policy and named locations programmatically.
While we wait for support for this in Graph API: https://modernworkplace.fremmegaard.no/2019/08/14/intune-backup-and-restore-of-conditional-access-policies/