Summary: This article contains step-by-step instructions on troubleshooting Conditional Access Policy (CAP) enforcement on the Microsoft 365 connection account.
Applies to: Cayosoft Administrator 10.x or higher
ID: KB20220419-1
Check if CAPs affect the Microsoft 365 connection account
- Sign in to the Microsoft Entra admin center as a user with a Global Administrator role assigned.
- Browse for Identity > Users > All users.
- Search for the Microsoft 365 connection account.
- Open its properties and click Sign-in logs.
- Consider the date and time and the status of the sign-in event (the status should be 'Failure') select the sign-in event and click on it to open Activity Details.
- In Activity Details click the Conditional Access tab.
- You will get the list of CAPs and see if they affect the selected account: if they were applied or not applied.
Check if the Microsoft 365 connection account is included in Risky activities
- Sign in to the Microsoft Entra admin center as a user with a Global Administrator role assigned.
- Browse for Protection > Risky activities.
- Check if the account is included in Risky users or Risky sign-ins.
- If the account is in the Risky users list you can click Dismiss user(s) risk.
How to download sign-in logs
- Sign in to the Microsoft Entra admin center as a user with a Global Administrator role assigned.
- Browse for Identity > Users > All users.
- Search for the Microsoft 365 connection account.
- Open its properties and click Sign-in logs.
- Click the Download tab and select Download JSON.
- Perform download for each type of sign-in log.
Comments
0 comments
Please sign in to leave a comment.