Policy: Azure > CIS v2.0 > 01 - Identity and Access Management > 1.02 - Conditional Access

For most Azure tenants, and certainly for organizations with a significant use of Azure Active Directory, Conditional Access policies are recommended and preferred. To use conditional access policies, a licensing plan is required, and Security Defaults must be disabled. Conditional Access requires one of the following plans: • Azure Active Directory Premium P1 or P2 • Microsoft 365 Business Premium • Microsoft 365 E3 or E5 • Microsoft 365 F1, F3, F5 Security and F5 Security + Compliance • Enterprise Mobility & Security E3 or E5

Primary Policy

This policy is used with the following primary policy:

Azure > CIS v2.0 > 01 - Identity and Access Management

In Your Workspace

Policy Settings by Type report

Developers

Category URI

tmod:@turbot/cis#/control/categories/cis

Policy Type URI

tmod:@turbot/azure-cisv2-0#/policy/types/s0102

GraphQL

query policyType(id: "tmod:@turbot/azure-cisv2-0#/policy/types/s0102") { … }

query policySettings(filter: "policyTypeId:'tmod:@turbot/azure-cisv2-0#/policy/types/s0102'") { … }

query policyValues(filter: "policyTypeId:'tmod:@turbot/azure-cisv2-0#/policy/types/s0102'") { … }

CLI

Get Policy Type

turbot graphql policy-type --id "tmod:@turbot/azure-cisv2-0#/policy/types/s0102"

Get Policy Settings

turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/azure-cisv2-0#/policy/types/s0102"

Policy: Azure > CIS v2.0 > 01 - Identity and Access Management > 1.02 - Conditional Access

Primary Policy

Related Policies

Category

In Your Workspace

Developers

Policy: Azure > CIS v2.0 > 01 - Identity and Access Management > 1.02 - Conditional Access

Primary Policy

Related Policies

Category

In Your Workspace

Developers