Azure AD Sign-in log lacking device ID

Hello,

I was trying to use a Conditional access policy to enforce MFA on devices that are not hybrid-azure ad joined.

It seems to be working fine for connections from client apps, but I'm having trouble with connection from browser.

- A minority of sign-in attempts to log on from Edge Browser on correctly hybrid-joined devices are lacking any "Device ID" info in AAD sign-in logs, and so those sign-ins are prompted for MFA.

- Most, but not all of the connection from other browsers (chrome, firefox) on correctly hybrid-joined devices are lacking the device ID. Some chrome browser seems to have it though.

What is the rule there, are we forced to work with Edge in this scenario ? What would cause my edge sign-in to not have the device ID ?

submitted by /u/Sab159
[link] [comments]

Read more here: https://www.reddit.com/r/AZURE/comments/jwbqhb/azure_ad_signin_log_lacking_device_id/

Content Attribution

This content was originally published by /u/Sab159 at Microsoft Azure, and is syndicated here via their RSS feed. You can read the original post over there.

%d bloggers like this: