Create seperate sign in risk policies for medium and high risk events
Would like to be able to create a seperate sign-in risk policy for medium and high risk events, medium policy would enforce MFA but let user continue working, high risk policy would block user access and preferably intiate sign out of all existing logins/tokens as this is a confirmed breech/exposure of credentials.
We’ve started the work on this.
I want the ability to add as example specific users to a low risk policy, others to Medium Risk Policy and others to a High Risk Policy.
Sebastian Stein commented
Make the User Risk condition within Conditional Access Policies more granular. For example it would be great, if I can configure a different Conditional Access Policy for a case of Leaked Credentials then for a user that signs in from multiple unusual locations while travelling.