Actions129
- Calendar Permission Actions
- CIPP Administration Actions
- Execute API Client (GET)
- Execute Auto Backup
- Execute Extension Mapping (GET)
- Execute Extension Mapping (POST)
- Execute Extension Sync
- Execute Extensions Config
- Execute Password Config (POST)
- Execute Restore Backup
- Execute Run Backup
- List Custom Roles
- List Extension Sync
- List Logs
- List Scheduled Items
- Remove Scheduled Item
- Execute API Client (POST)
- Execute Extension Test
- Execute Password Config (GET)
- List Backups
- List Function Parameters
- Group Actions
- Intune Actions
- Add MSP App
- Add Office App
- Add Policy
- Add Store App
- Assign App
- Assign Autopilot Device
- Device Action
- Get Recovery Key
- List Applications
- List Application Queue
- List Autopilot Config
- List Devices
- List Intune Scripts
- List Intune Templates
- Remove Autopilot Device
- Remove Policy
- Remove Queued App
- Add Choco App
- Add WinGet App
- Assign Policy
- Get Local Admin Password
- List Autopilot Devices
- List Intune Policies
- Remove App
- Remove Intune Script
- Sync Autopilot Devices
- License Actions
- Security & Compliance Actions
- Teams & SharePoint Actions
- Tenant Actions
- Add Alert
- Clear Tenant Cache
- Execute CA Exclusion
- Execute Named Location
- Get Tenant
- List Alerts Queue
- List Azure AD Connect Status
- List Conditional Access Policies
- List Named Locations
- List Shared Mailbox Statistics
- List Standards
- List Tenants
- Remove Standard Template
- Add Named Location
- Edit Tenant
- Execute Standards Run
- List Audit Logs
- List CSP Licenses
- List Roles
- List Standard Templates
- Tool Actions
- User Actions
- Add User
- Exec Restore Deleted User
- List User
- List User Conditional Access Policies
- List User Groups
- Clear Immutable ID
- Create Temporary Access Password
- Delete User Device
- Dismiss Risky User
- List Deleted Items
- List Inactive Accounts
- List Sign-Ins
- Remove User
- Reset MFA
- Restore Deleted Item
- Revoke Sessions
- Set Email Forward
- Set Per-User MFA
- List All Users
- List User Counts
- List User Devices
- Convert Mailbox
- Disable User
- Enable Archive
- List MFA Users
- Offboard User
- Reset Password
- Send MFA Push
- Set Out of Office
Overview
This node interacts with the CIPP API to list Conditional Access Policies for a specified tenant. It is useful for administrators who need to retrieve and manage security policies related to conditional access within their organization's tenant. For example, it can be used to audit or review access policies applied to users and devices in a Microsoft environment.
Use Case Examples
- List all Conditional Access Policies for a tenant by specifying the tenant ID or domain name.
- Use batching options to handle large sets of policies efficiently.
Properties
| Name | Meaning |
|---|---|
| Tenant Filter | Specifies the tenant ID or domain name to filter the Conditional Access Policies for the target tenant. |
| Request Options | Additional request settings such as batching, SSL certificate validation, proxy configuration, and request timeout to customize the API call behavior. |
Output
JSON
policiesid- Unique identifier of each Conditional Access Policy.displayName- Display name of the Conditional Access Policy.state- Current state of the policy (e.g., enabled, disabled).conditions- Conditions under which the policy applies, such as user or device criteria.grantControls- Grant controls configured for the policy, defining access requirements.
Dependencies
- Requires an OAuth2 API credential for authentication with the CIPP API.
Troubleshooting
- Ensure the tenantFilter property is correctly set to a valid tenant ID or domain name; otherwise, the API call may fail or return no data.
- If SSL certificate validation errors occur, consider enabling the 'Ignore SSL Issues' option, but be aware of the security implications.
- Proxy settings must be correctly configured if used; incorrect proxy details can cause request failures.
- Timeout settings should be adjusted based on network conditions to avoid premature request termination.