Public/TenantConfiguration/Baseline/ConditionalAccessPolicies/JyskIT-Baseline-CA-RequireMFA.json

{
    "conditions": {
      "applications": {
        "includeApplications": [
          "All"
        ]
      },
      "locations": {
        "includeLocations": [
          "All"
        ],
        "excludeLocations": [
          "AllTrusted"
        ]
      },
      "users": {
        "excludeGroups": [
          "JyskIT-Baseline-CA-RequireMFA_Exclude",
          "JyskIT-Baseline-Administrators"
        ],
        "includeUsers": [
          "All"
        ]
      }
    },
    "displayName": "JyskIT-Baseline-CA-RequireMFA",
    "grantControls": {
      "operator": "OR",
      "authenticationStrength": {
        "id": "Jysk IT - MFA Methods"
      }
    },
    "state": "enabledForReportingButNotEnforced"
  }