Allow the possibility to assign Dynamics Device Groups to Conditional Access policies
I'd like to enforce enrollment for Corporate devices but not for Personal devices; for the same user account. So I can create Dynamics Device Groups but I if I assign these groups to Conditional Access policies, it doesn't work.
A Microsoft engeener confirm us that device dynamic group can be used in conditional access policies.
Please impprove it because it could be very usefull.
I agree, I have a business requirement that requires this functionality.
Maya Antony commented
This is needed for us also - "assign Dynamics Device Groups to Conditional Access policies".
Need to enforce enrolment for only corporate devices which is assigned to Dynamic Device group via DEP.
Need to create a CA rule which forces users to enroll the devices. This CA rule need to be assigned to ONLY corporate devices.
Pls prioritize this and implement.
Agreed. At the moment you can only apply a policy to All devices; or Compliant devices.
Kris Titeca commented
Same problem here. Management wants distinction between corporate and private devices, something I can't translate into conditional access rule today.