Users’ Microsoft Defender for Cloud Apps Conditional Access App Control (CAAC) policies may not apply as expected
ID: DZ1177186
Issue type: Incident
|
|
|---|
|
|
Impacted services
Microsoft Defender XDR
|
|
|---|
|
|
Details
Title: Users’ Microsoft Defender for Cloud Apps Conditional Access App Control (CAAC) policies may not apply as expected
User impact: Users’ Microsoft Defender for Cloud Apps CAAC policies may not have applied as expected.
More info: Users protected by Microsoft Defender for Cloud Apps CAAC policies may have been unexpectedly blocked when using cloud applications.
Final status: We’ve deployed our permanent solution and completed our testing and validations to ensure the issue won’t recur. We mitigated this impact as of Wednesday, October 22, 2025, at 2:54 PM UTC but wanted to continue to provide updates until the permanent solution was fully implemented.
Scope of impact: This issue may have impacted users with sessions or access policies configured in their tenant.
Start time: Tuesday, October 21, 2025, at 1:28 PM UTC
End time: Wednesday, October 22, 2025, at 2:54 PM UTC
Preliminary root cause: A recent update caused an upstream data sync issue with one of our service components which is leveraged for CAAC policies in Microsoft Defender for Cloud Apps, resulting in impact.
Next steps:
- To help prevent similar impact in the future, we’re further reviewing our testing and validation processes prior to deployment.
We'll provide a preliminary Post-Incident Report within two business days and a final Post-Incident Report within five business days.
|
|
|---|
|
|
|
|
Did you find this email helpful?
Yes
No
|
|
|---|
|
|
To customize what’s included in this email, who gets it, or to unsubscribe, set your Service health preferences. If you are receiving this email because your Admin added you as a recipient, please contact your Admin to unsubscribe.
|
|
|---|
|
|
|
|
|
