Share via

Access to Microsoft Teams blocked after disabling policy for unmanaged devices

Vincent 0 Reputation points
2025-01-15T12:25:13.0966667+00:00

Hello there,

Yesterday, I disabled the policy restricting access from unmanaged devices, as outlined in the Microsoft documentation. (https://learn.microsoft.com/nl-nl/sharepoint/control-access-from-unmanaged-devices?WT.mc_id=365AdminCSH_spo)

The policy has also disabled in Entra ID Conditional Access:
Scherm­afbeelding 2025-01-15 om 13.20.33

However, users are still experiencing issues when attempting to access the Microsoft Teams desktop client. They receive error code 53000, indicating that a Conditional Access policy requires a compliant device, and the device is not compliant. This happens also with OneDrive connection.

I understand that policy changes might take some time to propagate. Could anyone advise on the typical duration for such changes to take effect? Are there any steps I can take to expedite this process or verify that the policy has been correctly disabled?

Thank you in advance for your assistance.

Best regards,

Microsoft Teams
Microsoft Teams
A Microsoft customizable chat-based workspace.
10,736 questions
OneDrive
OneDrive
A Microsoft file hosting and synchronization service.
1,281 questions
SharePoint
SharePoint
A group of Microsoft Products and technologies used for sharing and managing content, knowledge, and applications.
11,125 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Robin Sheng-MSFT 5,850 Reputation points Microsoft Vendor
    2025-01-16T07:34:16.3633333+00:00

    Hi @Vincent

    According to your case description, after you set up conditional access, you encountered error code 53000.

    Among them, the official Microsoft document states: It may take up to 24 hours for the policy to take effect. It will not take effect on users who have logged in from unmanaged devices.

    Please verify again whether the policy has been saved and has taken effect.

    • In the Microsoft Entra Admin Center, navigate to Conditional Access.
    • Select Policies, and then select the policy you have changed.
    • Click Save to ensure that the changes are applied.
    • Have the affected users restart their devices to ensure that the devices get the latest policies from the server.
    • Have the user try to log in to Teams and OneDrive again to see if the error is still encountered.

    For error code 53000, the official said: This policy only allows access to your organization's resources from compliant devices. To meet the requirements, your device must be joined to the local Active Directory or Azure Active Directory. Please refer to Troubleshooting compliance error messages for a work or school account.

    User's image

    User's image

    User's image Thanks for your understanding and patience.

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.