How to Setup MFA Conditional Access in Azure AD

**To Configure your Conditional Access Policy**

In the Azure portal, on the left navbar, click  Azure Active Directory.



On the Azure Active Directory blade, in the Manage section, click Conditional access
On the Conditional Access blade, to open the New blade, in the toolbar on the top, click Add.
On the New blade, in the Name textbox, type a name for your policy.
5. In the Assignment section, click Users and groups.
On the Users and groups blade, perform the following steps:

a. Click  Select users and groups.

b. Click  Select.

c. On the  Select blade, select your test user, and then click Select.

d. On the  Users and groups blade, click Done.

On the New blade, to open the Cloud apps blade, in the Assignment section, click Cloud apps.
On the Cloud apps blade, perform the following steps:

a. Click  Select apps.

b. Click  Select.

c. On the  Select blade, select your cloud app, and then click Select.

d. On the  Cloud apps blade, click Done.

On the New blade, to open the Conditions blade, in the Assignment section, click Conditions.
On the Conditions blade, to open the Locations blade, click Locations.
On the Locations blade, perform the following steps:

a. Under  Configure, click Yes.

b. Under  Include, click All locations.

c. Click  Exclude, and then click All trusted IPs.

d. Click  Done.

On the Conditions blade, click Done.On the New blade, to open the Grant blade, in the Controls section, click Grant.
On the Grant blade, perform the following steps:

a. Select  Require multi-factor authentication.

b. Click  Select.

On the New blade, under Enable policy, click On.
On the New blade, click Create.

Reference Link:

https://docs.microsoft.com/en-us/azure/active-directory/active-directory-conditional-access-azure-portal-get-started

Updated on: 31/01/2023