Why Conditional Access?
In order to keep our security and privacy protocols aligned with industry standards, the Learning Technology Services team is introducing Conditional Access policies. Conditional Access makes it more difficult for cybercriminals to access sensitive data in the case of an account compromise. Account compromise is when a hacker steals credentials to break into a secured account—like the district assigned one you use for your computer login, email, eServices, etc. Conditional Access requires users to provide additional verification of their identity when logging into apps and services under certain conditions. You may already be using Conditional Access when you login to online banking, health services, etc. Most often verification comes in the form of Multi-Factor Authentication (MFA) where you use a mobile app, SMS or personal email address to prove that you are the one trying to access the account.
Conditional Access will NEVER be required when:
Using a district issued Windows laptop/desktop
Using any device when connected to SD23 network
Conditional Access WILL be required when:
Logging into any Microsoft 365 app, including Outlook Webmail, or apps linked to your district account on a network other than SD23 Wi-Fi.
How do staff login when Conditional Access is Required?
Your primary verification is your district issued username and password. Additional verification (MFA) can be established using the Microsoft Authenticator mobile app, which is available for Apple and Android phones/tablets. Instructions on how to install MS Authenticator are here. There are other authenticators available, and staff may use these instead if they are more familiar with the platform, however no additional support from IT for Learning for these tools will be available.