Azure AD Graph is retiring, and admins must migrate classic Conditional Access policies to Microsoft Graph by July 10, 2024. Failure to migrate will prevent new device enrollment and compliance via the Company Portal and Intune apps across various platforms.
Azure Active Directory (Azure AD) Graph has been deprecated since mid-2023 and is in its retirement phase to allow applications time to migrate to Microsoft Graph. As part of our ongoing efforts to prepare for this, we will be updating the Intune Company Portal infrastructure to move to Microsoft Graph. With this update, by July 10, 2024, admins must migrate classic Conditional Access (CA) to the new policies and disable or delete policies for the Company Portal and Intune apps to continue working.
How this will affect your organization:
If you are using classic Conditional Access policies, you will need to migrate these policies.
User impact: If you do not migrate your policies, users will not be able to enroll new devices via the Company Portal and they will not be able to make non-compliant devices compliant (if non-compliance is caused by a classic CA policy or a condition within a classic CA policy). This applies to:
What you need to do to prepare:
Before July 10, 2024, migrate your classic CA policies. For instructions, see Migrate from a classic policy - Microsoft Entra ID | Microsoft Learn.
We have published a blog with these details and will provide any additional updates or changes to the timeline there: Support tip: Migrate classic Conditional Access policies