When to use Conditional Access?

Source: Authentication and Authorization

When to use Conditional Access?

Conditional Access is an Azure AD tool that allows (or dienies) access to resources.

Azure Conditional Access.

Use to enable multifactor authentication.
Require managed devices.
Access only approved client applications.
Exclude countries from which you never expect sign in.
Respond to potentially compromised accounts.
Completely block access.
Block legacy authentication protocols.
Test using the report-only mode.