💼 6.2.3 Ensure that an exclusionary device code flow policy is considered (Manual)

ID: /frameworks/cis-azure-v4.0.0/06/02/03

Description

Conditional Access Policies can be used to prevent the Device code authentication flow. Device code flow should be permitted only for users that regularly perform duties that explicitly require the use of Device Code to authenticate, such as utilizing Azure with PowerShell.

Similar

Sections
- /frameworks/cis-azure-v3.0.0/02/02/03

Similar Sections (Take Policies From)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 CIS Azure v3.0.0 → 💼 2.2.3 Ensure that an exclusionary Device code flow policy is considered (Manual)			1		no data

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 CIS Azure v3.0.0 → 💼 2.2.3 Ensure that an exclusionary Device code flow policy is considered (Manual)			1		no data

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance

Policies (1)

Policy	Logic Count	Flags	Compliance
🛡️ Microsoft Entra ID Device Code Authentication Flow is not restricted🟢⚪		🟢 x2, ⚪ x1	no data

Description​

Similar​

Similar Sections (Take Policies From)​

Similar Sections (Give Policies To)​

Sub Sections​

Policies (1)​