Reply
lakings27
Level 1 Contributor
‎09-18-2019 03:04 PM
Level 1 Contributor
‎09-18-2019 03:04 PM

Conditional Access for Partner Center, Managed Devices Only

Hello- I know that we are supposed to comply with MFA for the partner portal and we do. I am requesting an additional feature be added. We heavily use conditional access in our organization, and we love it. We have locked down our internal resources so you can't access them unless you are on an intune managed device deployed by our internal IT. We can do this for all of our apps and resources EXCEPT for the partner center. By not having conditional access to the partner center, it leaves a massive hole in our organization's security and puts our client's at risk. While MFA is essential, adding an additional layer of protection like conditional access is enormous. Please add.

 

If we can do this now, please let me know how to accomplish this. Thank you!

Labels:
2 Me too
3 REPLIES 3
JamesJensen
‎12-10-2020 01:13 PM
Visitor 1
‎12-10-2020 01:13 PM

Any progress on this?  We are doing a big push into locking down different services to managed devices and/or trusted locations.

This seems like a major piece missing in Conditional Access

0 Kudos
JanoschUlmer
Microsoft
‎12-14-2020 06:59 AM
Microsoft
In response to JamesJensen
‎12-14-2020 06:59 AM

I would recommend to give feedback on the Azure Feedback community: Azure Active Directory: Conditional Access (226 ideas) – Customer Feedback for ACE Community Tooling

Kind regards, Janosch (Note: Leaving role as of March 2023, don't expect further answers. Connect with me via LinkedIn: https://linkedin.com/in/janoschulmer)
0 Kudos
JanoschUlmer
Microsoft
‎09-19-2019 05:04 AM
Microsoft
‎09-19-2019 05:04 AM

Have you tried to use reverse logic in the CA policies? Partner Center is not an app you can choose from when creating the policies, but if you create a policy which you apply to everything but all known apps (=set an exception for all apps you can choose in the CA policy dialogue), the rule will apply to everything else which is authenticated via AzureAD, also the Partner Center.

 

Certainly this is only a workaround - having Partner Center as app in the conditional access rules is indeed a good idea

Kind regards, Janosch (Note: Leaving role as of March 2023, don't expect further answers. Connect with me via LinkedIn: https://linkedin.com/in/janoschulmer)
0 Kudos
Follow Us
    Share