Microsoft Entra Conditional Access Policies Can Be Bypassed Via Nested App Authentication
Cybersecurity NewsArchived Jun 22, 2026✓ Full text saved
Microsoft Entra Conditional Access Policies (CAPs), a core security control for Azure and Microsoft 365 tenants, were recently found vulnerable to a bypass technique involving Nested App Authentication (NAA), according to research disclosed by NetSPI. CAPs are widely deployed to enforce strong authentication requirements such as multi-factor authentication, device compliance, and location-based restrictions. They are […] The post Microsoft Entra Conditional Access Policies Can Be Bypassed Via Ne
Full text archived locally
✦ AI Summary· Claude Sonnet
HomeCyber Security
Microsoft Entra Conditional Access Policies Can Be Bypassed Via Nested App Authentication
By Abinaya
June 22, 2026
Microsoft Entra Conditional Access Policies (CAPs), a core security control for Azure and Microsoft 365 tenants, were recently found vulnerable to a bypass technique involving Nested App Authentication (NAA), according to research disclosed by NetSPI.
CAPs are widely deployed to enforce strong authentication requirements such as multi-factor authentication, device compliance, and location-based restrictions. They are often treated as a key safeguard even when user credentials are compromised.
NetSPI’s research shows that under specific conditions, attackers could obtain Microsoft Graph access tokens while entirely bypassing Conditional Access evaluation.
The technique abuses Microsoft’s custom OAuth implementation for Single Sign-On, particularly how refresh tokens are reused and brokered between trusted first-party applications.
This behavior builds on prior work on Family of Client IDs (FOCI) and NAA, also referred to as BroCI, which researchers, including Secureworks, SpecterOps, and others, have extensively documented.
Microsoft Entra CAPs Bypassed
Nested App Authentication is Microsoft’s SSO framework that allows “host” applications like the Azure Portal to act as authentication brokers for nested applications.
Instead of requiring the user to reauthenticate each time they switch services, the host silently exchanges its cached refresh token for an access token scoped to a child application.
The Azure Portal used a refresh token to obtain Microsoft Graph access tokens, potentially bypassing Conditional Access restrictions (source: NetSPI)
This is implemented using special redirect URIs and additional parameters such as brk_client_id and brk_redirect_uri in otherwise standard OAuth token requests, enabling tokens to be passed between applications without user interaction.
The vulnerability arises when this NAA flow is used with the ADIbizaUX client, a heavily used component of the Azure Portal for identity and access management.
ADIbizaUX exposes its own undocumented APIs and holds a broad set of pre-consented Microsoft Graph permissions, allowing it to manage users, groups, applications, directories, and even Conditional Access policies.
NetSPI found that when an Azure Portal refresh token was brokered to ADIbizaUX to request a Microsoft Graph token, Conditional Access policies were not evaluated, and an access token was still issued.
In contrast, similar refresh operations using FOCI-enabled clients, such as Microsoft Teams, were correctly blocked by CAPs once a blocking policy was activated, indicating that the issue was specific to the NAA-based flow and to particular clients.
Further testing identified two additional Microsoft Intune portal extension applications that could also use an Azure Portal refresh token via NAA to obtain Microsoft Graph tokens without Conditional Access enforcement.
In a realistic attack, an adversary would first need to steal an Azure Portal refresh token, for example, through a phishing campaign or adversary-in-the-middle framework targeting login.microsoftonline.com.
The token’s fixed 24-hour lifetime and non-renewable behavior limit long-term persistence but still provide a meaningful window for post-compromise abuse within a tenant.
NetSPI reported the issue to the Microsoft Security Response Center (MSRC), which classified it as a medium-severity vulnerability.
Microsoft has since deployed a fix, and retesting confirms that the previously affected NAA flows now correctly return Conditional Access blocking errors when policies apply.
The disclosure underscores how deviations from standard OAuth behavior, even when intended to improve usability and SSO, can create subtle but high-impact authorization weaknesses in cloud identity platforms.
Follow us on Google News, LinkedIn, and X to Get More Instant Updates.
Tags
cyber security
cyber security news
Copy URL
Linkedin
Twitter
ReddIt
Telegram
Abinayahttps://cybersecuritynews.com/
Abi is a Security Editor and fellow reporter with Cyber Security News. She is covering various cyber security incidents happening in the Cyber Space.
Trending News
Hackers Abuse Claude.ai Shared Chat Feature to Host the ClickFix Social Engineering Instructions
FortiBleed – Fortinet Warns of Active Credential Harvesting Campaign Targeting FortiGate Devices
Critical Cisco ISE Vulnerability Allows Attacker to Execute Malicious Code Remotely
CISA Warns of Oracle PeopleSoft 0-Day Vulnerability Exploited in Ransomware Attacks
Novo Nordisk Confirms Cyber Attack — Hackers Accessed Patient Medical Data and Internal AI Assets
Latest News
Apple
Apple Beats Studio Buds Vulnerability Allows Hackers to Eavesdrop on Users
Cyber Security
Klue Hack Leads to Data Breach Across Multiple Cybersecurity Companies
Cyber Security News
Hackers Use RemotePC RMM and PowerShell Stagers to Deploy Prinz Eugen Ransomware
Cyber Security
29-Year-Old ‘Squidbleed’ Vulnerability Discovered With the Aid of Claude Mythos Preview
Cyber Security News
Microsoft’s New Option Allows Organizations to Block Copilot Access to Office Files