From 629f6c068532d05a5ecca3ed948f8870d487f3c9 Mon Sep 17 00:00:00 2001
From: Rob <32746961+robelliottuk@users.noreply.github.com>
Date: Thu, 9 Oct 2025 14:54:17 +0100
Subject: [PATCH] Update concept-conditional-access-cloud-apps.md

Adding Microsoft Defender multitenant portal to affected list;

We tested https://mto.security.microsoft.com and if "Windows Azure Service Management API" is blocked on the users home tenant by Conditional Access the MTO portal fails to load tenant list.

Error "Failed to load some of your tenants. Please check your conditional access policy."

https://security.microsoft.com remains functional.
---
 .../conditional-access/concept-conditional-access-cloud-apps.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/docs/identity/conditional-access/concept-conditional-access-cloud-apps.md b/docs/identity/conditional-access/concept-conditional-access-cloud-apps.md
index b6f33585017..3d077f68bc5 100644
--- a/docs/identity/conditional-access/concept-conditional-access-cloud-apps.md
+++ b/docs/identity/conditional-access/concept-conditional-access-cloud-apps.md
@@ -67,8 +67,10 @@ Because the policy is applied to the Azure management portal and API, any servic
 - Classic deployment model APIs
 - Microsoft 365 admin center
 - Microsoft IoT Central
+- Microsoft Defender Multitenant management
 - SQL Managed Instance
 - Visual Studio subscriptions administrator portal
+  
 
 > [!CAUTION]
 > Conditional Access policies associated with the Windows Azure Service Management API [no longer cover Azure DevOps](/azure/devops/organizations/accounts/conditional-access-policies#azure-resource-manager-audience).