title	description	ms.topic	ms.date	ms.author	ms.reviewer	manager	author	external help file	Module Name	online version	schema
Set-EntraConditionalAccessPolicy	This article provides details on the Set-EntraConditionalAccessPolicy command.	reference	06/26/2024	eunicewaweru	stevemutungi	CelesteDG	msewaweru	Microsoft.Graph.Entra-Help.xml	Microsoft.Graph.Entra		2.0.0

Set-EntraConditionalAccessPolicy

Synopsis

Updates a conditional access policy in Microsoft Entra ID by Id.

Syntax

Set-EntraConditionalAccessPolicy 
 -PolicyId <String> 
 [-Conditions <ConditionalAccessConditionSet>]
 [-GrantControls <ConditionalAccessGrantControls>] 
 [-DisplayName <String>] 
 [-Id <String>] 
 [-State <String>] 
 [-SessionControls <ConditionalAccessSessionControls>] 
 [<CommonParameters>]

Description

This cmdlet allows an admin to update a conditional access policy in Microsoft Entra ID by Id. Conditional access policies are custom rules that define an access scenario.

Examples

Example 1: Updates a conditional access policy in Microsoft Entra ID by PolicyId.

PS C:\> $cond = New-Object -TypeName Microsoft.Open.MSGraph.Model.ConditionalAccessConditionSet
PS C:\> $control = New-Object -TypeName Microsoft.Open.MSGraph.Model.ConditionalAccessGrantControls
PS C:\> $session = New-Object -TypeName Microsoft.Open.MSGraph.Model.ConditionalAccessSessionControls
PS C:\> Set-EntraConditionalAccessPolicy -PolicyId 6b5e999b-0ba8-4186-a106-e0296c1c4358 -DisplayName "MFA policy 1" -State "Enabled" -Conditions $cond -GrantControls $control -SessionControls $session

The first command creates new ConditionalAccessConditionSet object.

The second command creates new ConditionalAccessGrantControls object.

The third command creates new ConditionalAccessSessionControls object.

The final command updates a conditional access policy in Microsoft Entra ID.

Example 2: Updates display name for a conditional access policy in Microsoft Entra ID by PolicyId.

PS C:\> Set-EntraConditionalAccessPolicy -PolicyId 6b5e999b-0ba8-4186-a106-e0296c1c4358 -DisplayName "MFA policy 1"

This command updates a conditional access policy in Microsoft Entra ID.

Example 3: Updates state for a conditional access policy in Microsoft Entra ID by PolicyId.

PS C:\> Set-EntraConditionalAccessPolicy -PolicyId 6b5e999b-0ba8-4186-a106-e0296c1c4358 -State "Enabled"

This command updates a conditional access policy in Microsoft Entra ID.

Parameters

-PolicyId

Specifies the policy id of a conditional access policy in Microsoft Entra ID.

Type: String
Parameter Sets: (All)
Aliases:

Required: True
Position: Named
Default value: None
Accept pipeline input: True (ByPropertyName, ByValue)
Accept wildcard characters: False

-DisplayName

Specifies the display name of a conditional access policy in Microsoft Entra ID.

Type: String
Parameter Sets: (All)
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-State

Specifies the enabled or disabled state of the conditional access policy in Microsoft Entra ID.

Type: String
Parameter Sets: (All)
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-Conditions

Specifies the conditions for the conditional access policy in Microsoft Entra ID.

Type: ConditionalAccessConditionSet
Parameter Sets: (All)
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-GrantControls

Specifies the controls for the conditional access policy in Microsoft Entra ID.

Type: ConditionalAccessGrantControls
Parameter Sets: (All)
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-Id

Specifies the ID of a conditional access policy in Microsoft Entra ID.

Type: String
Parameter Sets: (All)
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-SessionControls

This control allows organizations to require Microsoft Entra ID to pass device information to the selected cloud apps.

Type: ConditionalAccessSessionControls
Parameter Sets: (All)
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

CommonParameters

This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Set-EntraConditionalAccessPolicy.md

Set-EntraConditionalAccessPolicy.md

Set-EntraConditionalAccessPolicy

Synopsis

Syntax

Description

Examples

Example 1: Updates a conditional access policy in Microsoft Entra ID by PolicyId.

Example 2: Updates display name for a conditional access policy in Microsoft Entra ID by PolicyId.

Example 3: Updates state for a conditional access policy in Microsoft Entra ID by PolicyId.

Parameters

-PolicyId

-DisplayName

-State

-Conditions

-GrantControls

-Id

-SessionControls

CommonParameters

Inputs

Outputs

Notes

Related Links

Files

Set-EntraConditionalAccessPolicy.md

Latest commit

History

Set-EntraConditionalAccessPolicy.md

File metadata and controls

Set-EntraConditionalAccessPolicy

Synopsis

Syntax

Description

Examples

Example 1: Updates a conditional access policy in Microsoft Entra ID by PolicyId.

Example 2: Updates display name for a conditional access policy in Microsoft Entra ID by PolicyId.

Example 3: Updates state for a conditional access policy in Microsoft Entra ID by PolicyId.

Parameters

-PolicyId

-DisplayName

-State

-Conditions

-GrantControls

-Id

-SessionControls

CommonParameters

Inputs

Outputs

Notes

Related Links