Ability to apply Azure Conditional Access policies to specific Windows OS versions (7, 8.1,10) for Hybrid Azure AD Joined Devices, or to spe
Ability to apply Azure Conditional Access policies to specific Windows OS versions (7, 8.1,10) for Hybrid Azure AD Joined Devices, or to specific devices in a device Group.
While Azure Conditional Access policies can be currently applied to Windows for Hybrid Azure AD Joined Devices this includes all Windows operating systems. There is no ability to apply them to specific Windows OS versions, or to target specific devices. Having this functionality would allow for example to block Windows 7 and 8.1 devices through CA policies, or block specific devices without an approved reason to not upgrade to Win10.
When creating CA rules, there are currently 5 Device Types to choose from: (Android, iOS, Windows Phone(!?), Windows and macOS)
In order being able to take the lower security standards of windows 7 into account, it would be good if Windows 7 would be available independently from Windows 10 in the Device Platform Selector.