Microsoft Adds Migration Help for Older Azure Active Directory Conditional Access Policies

Microsoft issued a reminder today that IT pros should switch Azure Active Directory conditional access policies that were created using the "classic" Azure portal to policies supported by the new Azure Portal.

The new Azure Portal is also known as the "Azure Active Directory Admin Center." It now has a couple of features to help with the transition, according to Microsoft's announcement. For instance, the new Azure Portal will show the policies that were created using the "classic Azure portal, Intune Silverlight portal, and the Intune App Protection portal." Moreover, Microsoft has added a new "disable option for each classic policy."

IT pros should create new Azure AD conditional access policies using the new Azure Portal and then delete their older conditional access policies created with the old Azure Portal. The announcement suggested that organizations can use the newly added features in the new Azure Portal to "migrate on a timeline that works best for you."

Conditional access is an access control scheme for client devices. It permits access to network resources based on meeting conditions set by IT pros.

The reason to make the switch is that the Azure AD conditional access policies that IT pros may have created using the classic Azure Portal will continue to function alongside any policies created with the new Azure Portal. Here's how Microsoft characterized that scenario in this "Best Practices" document:

"Both policies [created by the new and old portals] are enforced by Azure Active Directory and the user gets access only when all requirements are met."

There's another motivation to perform the switch. Microsoft suggested that "the new policies enable you to address scenarios you could not handle with classic policies," according to this "Migration" document.

Microsoft's reminder comes about four months after Microsoft first enabled conditional access policies within the new Azure Portal. Microsoft is planning to put an end to support for its classic Azure Portal, starting on Nov. 30. The old Azure portal will be deprecated, meaning that it won't get developed or patched by Microsoft.

About the Author

Kurt Mackie is senior news producer for the 1105 Enterprise Computing Group.


  • How To Replace an Aging Domain Controller

    If the hardware behind your domain controllers has become outdated, here's a step-by-step guide to performing a hardware refresh.

  • Azure Backup for SQL Server 2008 Available at Preview Stage

    Microsoft added the option of using the Azure Backup service to provide recovery support for SQL Server 2008 and SQL Server 2008 R2 when those workloads are hosted on Azure virtual machines.

  • Microsoft Suggests Disabling Old Protocols with Exchange Server 2019

    Exchange Server 2019 with Cumulative Update 2 (CU2) can help organizations rid themselves of old authentication protocols, which constitute a potential security risk.

  • Microsoft Previews New Edge Browser on Windows 7 and Windows 8.1

    Microsoft announced this week that it has released previews of its Chromium-based Microsoft Edge Web browsers for use on Windows 7, Windows 8 and Windows 8.1 systems.

comments powered by Disqus

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.