Security & Continuity
Conditional Access Troubleshooting
Browse issue-specific guidance for Conditional Access.
- Conditional Access blocks service account unexpectedly
- Conditional Access report-only logs differ from real enforcement outcome
- Conditional Access template duplicated and now two policies conflict
- Emergency policy exclusion removed during tenant cleanup
- Guest users can access Teams but blocked from SharePoint
- Legacy app protected by app proxy bypasses expected Conditional Access policy
- Mac browser marked unsupported because device ID claim missing from session
- Named location trusted list updated but browser sessions keep prompting MFA
- New SaaS app blocked because device platform not recognized
- Policy excludes break-glass accounts yet sign-in frequency rule still applies
- Require compliant device policy blocks macOS browser sessions only
- Service account blocked after policy intended only for interactive sign-ins
- Service desk excluded from MFA but registration campaign still interrupts
- Session controls block file download in SharePoint but not in Teams preview
- Session sign in frequency policy causes repeated app prompts
- Terms of use acceptance loops on first login after policy assignment
- Trusted location configured but travel users still blocked
- Trusted network exclusions work for IPv4 but not IPv6 clients