CyberIntel ⬡ News
★ Saved ◆ Cyber Reads
← Back ◇ Industry News & Leadership Jun 22, 2026

Microsoft Entra Conditional Access Policies Can Be Bypassed Via Nested App Authentication

Cybersecurity News Archived Jun 22, 2026 ✓ Full text saved

Microsoft Entra Conditional Access Policies (CAPs), a core security control for Azure and Microsoft 365 tenants, were recently found vulnerable to a bypass technique involving Nested App Authentication (NAA), according to research disclosed by NetSPI. CAPs are widely deployed to enforce strong authentication requirements such as multi-factor authentication, device compliance, and location-based restrictions. They are […] The post Microsoft Entra Conditional Access Policies Can Be Bypassed Via Ne

Full text archived locally
✦ AI Summary · Claude Sonnet


    HomeCyber Security Microsoft Entra Conditional Access Policies Can Be Bypassed Via Nested App Authentication By Abinaya June 22, 2026 Microsoft Entra Conditional Access Policies (CAPs), a core security control for Azure and Microsoft 365 tenants, were recently found vulnerable to a bypass technique involving Nested App Authentication (NAA), according to research disclosed by NetSPI. CAPs are widely deployed to enforce strong authentication requirements such as multi-factor authentication, device compliance, and location-based restrictions. They are often treated as a key safeguard even when user credentials are compromised. NetSPI’s research shows that under specific conditions, attackers could obtain Microsoft Graph access tokens while entirely bypassing Conditional Access evaluation. The technique abuses Microsoft’s custom OAuth implementation for Single Sign-On, particularly how refresh tokens are reused and brokered between trusted first-party applications. This behavior builds on prior work on Family of Client IDs (FOCI) and NAA, also referred to as BroCI, which researchers, including Secureworks, SpecterOps, and others, have extensively documented. Microsoft Entra CAPs Bypassed Nested App Authentication is Microsoft’s SSO framework that allows “host” applications like the Azure Portal to act as authentication brokers for nested applications. Instead of requiring the user to reauthenticate each time they switch services, the host silently exchanges its cached refresh token for an access token scoped to a child application. The Azure Portal used a refresh token to obtain Microsoft Graph access tokens, potentially bypassing Conditional Access restrictions (source: NetSPI) This is implemented using special redirect URIs and additional parameters such as brk_client_id and brk_redirect_uri in otherwise standard OAuth token requests, enabling tokens to be passed between applications without user interaction. The vulnerability arises when this NAA flow is used with the ADIbizaUX client, a heavily used component of the Azure Portal for identity and access management. ADIbizaUX exposes its own undocumented APIs and holds a broad set of pre-consented Microsoft Graph permissions, allowing it to manage users, groups, applications, directories, and even Conditional Access policies. NetSPI found that when an Azure Portal refresh token was brokered to ADIbizaUX to request a Microsoft Graph token, Conditional Access policies were not evaluated, and an access token was still issued. In contrast, similar refresh operations using FOCI-enabled clients, such as Microsoft Teams, were correctly blocked by CAPs once a blocking policy was activated, indicating that the issue was specific to the NAA-based flow and to particular clients. Further testing identified two additional Microsoft Intune portal extension applications that could also use an Azure Portal refresh token via NAA to obtain Microsoft Graph tokens without Conditional Access enforcement. In a realistic attack, an adversary would first need to steal an Azure Portal refresh token, for example, through a phishing campaign or adversary-in-the-middle framework targeting login.microsoftonline.com. The token’s fixed 24-hour lifetime and non-renewable behavior limit long-term persistence but still provide a meaningful window for post-compromise abuse within a tenant. NetSPI reported the issue to the Microsoft Security Response Center (MSRC), which classified it as a medium-severity vulnerability. Microsoft has since deployed a fix, and retesting confirms that the previously affected NAA flows now correctly return Conditional Access blocking errors when policies apply. The disclosure underscores how deviations from standard OAuth behavior, even when intended to improve usability and SSO, can create subtle but high-impact authorization weaknesses in cloud identity platforms. Follow us on Google News, LinkedIn, and X to Get More Instant Updates. Tags cyber security cyber security news Copy URL Linkedin Twitter ReddIt Telegram Abinayahttps://cybersecuritynews.com/ Abi is a Security Editor and fellow reporter with Cyber Security News. She is covering various cyber security incidents happening in the Cyber Space. Trending News Hackers Abuse Claude.ai Shared Chat Feature to Host the ClickFix Social Engineering Instructions FortiBleed – Fortinet Warns of Active Credential Harvesting Campaign Targeting FortiGate Devices Critical Cisco ISE Vulnerability Allows Attacker to Execute Malicious Code Remotely CISA Warns of Oracle PeopleSoft 0-Day Vulnerability Exploited in Ransomware Attacks Novo Nordisk Confirms Cyber Attack — Hackers Accessed Patient Medical Data and Internal AI Assets Latest News Apple Apple Beats Studio Buds Vulnerability Allows Hackers to Eavesdrop on Users Cyber Security Klue Hack Leads to Data Breach Across Multiple Cybersecurity Companies Cyber Security News Hackers Use RemotePC RMM and PowerShell Stagers to Deploy Prinz Eugen Ransomware Cyber Security 29-Year-Old ‘Squidbleed’ Vulnerability Discovered With the Aid of Claude Mythos Preview Cyber Security News Microsoft’s New Option Allows Organizations to Block Copilot Access to Office Files
    💬 Team Notes
    Article Info
    Source
    Cybersecurity News
    Category
    ◇ Industry News & Leadership
    Published
    Jun 22, 2026
    Archived
    Jun 22, 2026
    Full Text
    ✓ Saved locally
    Open Original ↗