Entra Conditional Access (CA) is one of the most powerful levers for shaping an organization’s authentication posture—but once it becomes mission critical, the stakes for getting it wrong skyrocket. Many organizations start with narrowly scoped CA policies and quickly find that CA ends up dictating security outcomes across devices, users, and applications.

The session shares the approach Accenture has developed over years of running CA at massive scale, enforcing controls such as device posture, MFA and phishing resistance, risk-based authentication, and privileged access for over 1.1 million users (including 800K employees and contractors and guests from more than 2,000 organizations). We’ll dig into how to prevent configuration mistakes, implement change control, maintain effective governance, manage exceptions, and stay within system constraints as complexity grows. Attendees will come away with practical patterns, pitfalls, and templates they can use to mature their own CA deployment faster and with fewer painful lessons.