Conditional Access App Control uses a reverse proxy architecture and enables user app access and sessions to be monitored and controlled in real-time based on access and session policies. Access and session policies are used within the Cloud App Security portal to further refine filters and set actions to be taken on a user. With the access and session policies

Deploy Conditional Access App Control for featured apps


  • To deploy Conditional Access App Control for Azure AD apps, you need a valid license for Azure AD Premium P1 as well as a Cloud App Security license.
Deployment Steps
  1. Step 1: Go to the Azure AD portal and create a conditional access policy for the apps and route the session to Cloud App Security
  2. Step 2: Sign in to each app using a user scoped to the policy
  3. Step 3: Verify the apps are configured to use access and session controls
  4. Step 4: Test the deployment

Step by step Block Downloads with CAS Conditional Access App Control Video
The Rubik’s Cube makes a perfect gift for any occasion. Learn how to solve the cube on Ruwix.



Microsoft MVP & MCT | Azure Service Delivery Lead with over 12 years of experience in Microsoft solutions and Professional services, Leading the Azure team to help our customers to build successful Azure practices, Blogger, Speaker, and Community leader. Focus on Azure, Cloud Security, Modern Workspace, AVD, Infrastructure as Code, Endpoint Management, Office 365, EMS.