MC781581: Migrate classic Conditional Access policies

Announcement IDMC781581 Published Date04-19-2024
ServiceIntuneLast Updated 05-17-2024
CategoryPlan for changeExpiration Date 08-11-2024
Roadmap IDAction Required by Date 06-30-2024
TagsAdmin impact, User impact


Summary
                Azure AD Graph is retiring, and admins must migrate classic Conditional Access policies to Microsoft Graph by June 30, 2024. Failure to migrate will prevent new device enrollment and compliance via the Company Portal and Intune apps across various platforms.


More Information

Updated May 17, 2024: We have updated the timing of this change below. Thank you for your patience.

Azure Active Directory (Azure AD) Graph has been deprecated since mid-2023 and is in its retirement phase to allow applications time to migrate to Microsoft Graph. As part of our ongoing efforts to prepare for this, we will be updating the Intune Company Portal infrastructure to move to Microsoft Graph. With this update, by June 30, 2024, admins must migrate classic Conditional Access (CA) to the new policies and disable or delete policies for the Company Portal and Intune apps to continue working.

How this will affect your organization:

If you are using classic Conditional Access policies, you will need to migrate these policies.

User impact: If you do not migrate your policies, users will not be able to enroll new devices via the Company Portal and they will not be able to make non-compliant devices compliant (if non-compliance is caused by a classic CA policy or a condition within a classic CA policy). This applies to:

  • Windows Company Portal
  • Intune Company Portal website
  • Android Company Portal
  • Intune app for Android Enterprise
  • Intune app for Android (AOSP)
  • iOS Company Portal
  • macOS Company Portal

What you need to do to prepare:

Before June 30, 2024, migrate your classic CA policies. 

Previous Post Next Post