Skip to main content Pricing for individuals For families For single users For premium users For students Learn more Pricing for business For small business For schools For government Pricing for enterprise For enterprise For frontline workers For nonprofits For government Meet Copilot Copilot Chat AI Agents Daily Prompt Guide Plans and pricing Microsoft Teams Word Excel PowerPoint Outlook OneDrive SharePoint Planner See all apps and services Microsoft Office Windows 365 Microsoft Viva Microsoft Edge Microsoft Agent 365 Plans and pricing Learn to use Copilot Copilot learning center Cost savings Accounts and billing FAQ Setup and install Templates Training What's new Microsoft Frontier Program Microsoft 365 Roadmap Microsoft 365 Blog Small Business Resource Center Self-help resources Billing support Community Contact Microsoft Support Self-help resources Admin self-help Support plans Find a partner Contact Sales Community Self-help resources Educator Center Request support Contact Microsoft Support Community Become a partner Partner resources See all support Try for free
  • 2 min read

Azure AD and Intune now support macOS in conditional access!

By , Vice President of Program Management

Tags

Audience

Content types

Products

Try Microsoft 365 Copilot

Available on desktop and mobile devices

Try Copilot Chat

Howdy folks,

Conditional access is one of athe fastest growing services in EMS and we are constantly getting feedback from customers about new capabilities they would like us to add to it. One of the most frequently requested is support for macOS. Customers want to have one consistent system for securing user accessing to Office 365 on all the platforms their employees are using.

So I’m excited to share that Azure Active Directory and Intune now support macOS platform for device-based conditional access! Administrators can now restrict access to Intune-managed macOS devices using device-based conditional access according to their organization’s security guidelines.

With the public preview of macOS device-based conditional access, you’ll be able to:

  • Enroll and manage macOS devices using Intune
  • Ensure macOS devices adhere to your organization’s compliance policies
  • Restrict access to applications in Azure AD to only compliant macOS devices

Get started with macOS conditional access public preview in two simple steps:

Configure compliance requirements for macOS devices in Intune

Use the Intune service in Azure Portal to create a device compliance policy for macOS devices in a few easy clicks:

Configure compliance requirements for device health, properties, and system security per your organization’s requirements.

For more details, go to https://aka.ms/macoscompliancepolicy.

(Important Note: for Conditional Access on macOS to work, the device will need to have the Intune Company Portal app installed).

Restrict access to Azure AD applications for macOS devices

Create a targeted conditional access policy for macOS to protect the Azure AD Applications. Go to conditional access under Azure AD service in Azure portal to create a new policy for macOS platform.

For more details on conditional access policies, go to Conditional Access in Azure Active Directory.

After you’ve taken these steps, macOS users covered in the policy will be able to access Azure AD connected applications only if their Mac conforms to your organization’s policies.

Supported OS versions, applications, and browsers

In the public preview, the following OS versions, applications, and browsers are supported on macOS:

Operating Systems

  • macOS 10.11+

Applications

The following Office 2016 for macOS applications are supported:

  • Outlook v15.34 and later
  • Word v15.34 and later
  • Excel v15.34 and later
  • PowerPoint v15.34 and later
  • OneNote v15.34 and later

Browsers

  • Safari

Try it out today and let us know what you think! We look forward to hearing from you.

Best regards,

Alex Simons (Twitter: @Alex_A_Simons)

Director of Program Management

Microsoft Identity Division

Alex Simons

Alex Simons

Vice President of Program Management

See Alex Simons posts