Also, this feature currently protects only Exchange and SPO and that too for installed apps. You need to select those services in scope and also native apps to make it work.
You missed a few things brother. Device control is most important. Each device must be registered in Entra-Id (Formerly AAD) and be complaint using intune. Also the MFA needs to happen on the O362 as well. Your Exclusions should also include any Run as a Service accounts as well as your Glass Break
Also, this feature currently protects only Exchange and SPO and that too for installed apps. You need to select those services in scope and also native apps to make it work.
You missed a few things brother. Device control is most important. Each device must be registered in Entra-Id (Formerly AAD) and be complaint using intune. Also the MFA needs to happen on the O362 as well. Your Exclusions should also include any Run as a Service accounts as well as your Glass Break
Thank you Chuck!
@@RioCloudSync was not trying to call you out brother. I work in Cyber Security in Azure
@@chuckrodenjr, does the device control affect smart phones?