1
Manage security and threats by using Microsoft Defender XDR
hard
A tenant administrator runs the above PowerShell command to create a Conditional Access policy. Users on iOS and Android devices report that they are still prompted for MFA, but the policy is intended to exclude those platforms. What is the issue?
Exhibit
Refer to the exhibit.
```powershell
$config = @{
TenantId = "contoso.onmicrosoft.com"
PolicyName = "Strict Security"
UserRiskLevels = @("high", "medium")
SignInRiskLevels = @("high")
ExcludePlatforms = @("iOS", "Android")
IncludeApplications = @("All")
GrantControls = @{
BuiltInControls = @("mfa", "compliantDevice")
TermsOfUse = @("TOU1")
}
}
New-MgIdentityConditionalAccessPolicy -BodyParameter $config
```