Skip to main content
Version: 2.1.0

MT.1003 - At least one Conditional Access policy is configured with All Apps.

Overview

Microsoft recommends creating at least one conditional access policy targeting all cloud apps and ideally should be enabled for all users.

Learn more: https://learn.microsoft.com/entra/identity/conditional-access/plan-conditional-access#apply-conditional-access-policies-to-every-app

Test Metadata

FieldValue
Test IDMT.1003
SeverityHigh
SuiteMaester
CategoryCA
PowerShell testTest-MtCaAllAppsExists
TagsCA, Maester, MT.1003

Source

  • Pester test: tests/Maester/Entra/Test-ConditionalAccessBaseline.Tests.ps1
  • PowerShell source: powershell/public/maester/entra/Test-MtCaAllAppsExists.ps1