Getting Started
Expert Support

Conditional Access Policy - Exclude Service Provider

2min

Step One: Review Conditional Access Policy

1

Review your Azure AD sign-in logs for the failed attempt

2

The user will appear as “SHI Technician”

3

Review the Conditional Access Policy details tab

Example:

Document image


Step Two: Exclude Guest User from Conditional Access Policy

1

Go to the Azure Active Directory page

Document image

2

On the left menu, select the Security page

Document image

3

Click on Conditional Access

Document image

4

Select Policies in the left menu

Document image

5

Select the conditional access policy you want to exclude a user from

6

Click on Users or Workload Identities

7

In the Exclude tab, click on Select Excluded Users

8

Exclude any guest or external account classified as a “Service Provider User” through your conditional access policy

9

Save the changes and the user/group selected is now excluded from the conditional access policy

Document image




Updated 10 Apr 2025
Doc contributor
Doc contributor
Did this page help you?
PREVIOUS
Foreign Principal Role for Azure Support
NEXT
Business Impact Statement (BIS)
Docs powered by Archbee