Could you please elaborate this in more details. Microsoft Azure Conditional Access does support "Nested Groups" as one of the very few features in Azure Active Directory that really does this.
I use the nested support at many customers.
/Peter Selch Dahl
I have several solution running with Citrix, Amazon and RDS in different configuration. Let's meet for a Per and discuss the issues. ClausJ from MCS and I have managed to solve my off the issues using advanced ADFS claim rules and unsupported scripting :)
You should read my blog post: https://blog.peterdahl.net/2017/09/10/credential-roaming-vs-device-registration-certificate-for-conditional-access/
I think Microsoft provides many solution to this idea and that the idea should just be changed to resolved :)
BlogPost - Protecting Dynamics 365 for Finance and Operations with Azure Conditional Accees:
Even though "Microsoft Dynamics ERP" is not listed in Azure Active Directory (The portal) and you can't configure "Conditional Access" specifically on that application, if you define a policy for ALL SaaS apps you will also include Microsoft Dynamics 365. I works like a charm!
At some point Microsoft will add support for "Conditional Access" and you will be able to defined the policy on the application within Azure Active Directory
The Microsoft Dynamics 365 team is currently working on adding this support: https://community.dynamics.com/enterprise/f/759/p/258028/724952#724952
Also listed on the Azure Active Directory feedback site: https://feedback.azure.com/forums/169401-azure-active-directory/suggestions/19152448-effective-conditional-access-policies-for-users-an
I can confirm that work on this feature is underway, but I don’t have any details to share about timing.