Entra/Office 365

Conditional Access

It’s a tool built into Microsoft Entra that allows IT administrators to control access to applications and data across the Microsoft 365 ecosystem — and beyond.

It works by enforcing policies that define what users can access and under what conditions, such as their location, device type, or sign-in risk.

Examples of common policies include:

• Require multi-factor authentication (MFA) for all users
• Allow access only to certain Microsoft 365 apps
• Block access from outside of approved locations or devices
• Force a password change if risky sign-in behaviour is detected

In essence, it's like working for the government: you’re granted clearance to access sensitive information based on your role, but you must follow specific rules — or conditions — to maintain that access.