-
Notifications
You must be signed in to change notification settings - Fork 467
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Conditional Access Gap Analysis - Windows Sign In should be removed from App Report #1824
Comments
@sabinasmith It looks like you might be the author of this template? |
Any update on this? Also facing the same issue, 60% of our logins not covered by MFA are from "Windows Sign In" which isn't covered by conditional access, so it makes zero sense for these to be reported on at all. |
Agreed, this should not be part of the report. |
conditionalAccessGapAnalyzer.workbook is including "Windows SignIn" that doesn't support MFA, so it doesn't have sense to be included in the report. There was also request for this change: microsoft#1824
@sabinasmith did you ever look in to this? |
@gardnerjr can you review my changes in #2418 that fix this Issue? |
@Palciny someone from the Azure AD Workbooks team needs to approve, they're the codeowners of that area. |
Same issue, can this please be fixed. 2022! this bug was logged. |
In reviewing the CA GAP Analysis workbook, in the Unprotected Applications section, the report of Number of Users Signing in to Applications with Conditional Access Policies Not applied, it includes the Windows Sign-In "app"
This is the sign in to the Windows device and PRT acquisition process and would not be in scope of CA. This causes lots of "noise" in the report since most users will have this event.
Can we remove the "Windows Sign-In" app from this report?
The text was updated successfully, but these errors were encountered: