Pre-enforcement modeling
Conditional Access impact analysis
Stop guessing who loses access when you move a policy from report-only to enforced. Model likely blocks from recent Entra sign-in activity.
Create your account, set up a workspace, and get 14 days of Pro - connect tenants, detect drift, and run impact analysis. No credit card required.
Pre-enforcement modeling
Impact analysis runs against your latest CA policy snapshot and recent sign-in events from Microsoft Graph. It estimates which users and applications would likely have been blocked if the proposed change were already enforced.
Results are confidence-rated. They reflect historical sign-ins - not a guarantee of future behavior - but they beat flipping enforcement and waiting for helpdesk tickets.
- 1, 7, 14, and 30 day sign-in windows
- Top affected users and applications ranked by modeled block count
- Re-run on demand before apply in the change workflow
- Readiness views tie MFA registration gaps to real blocked sign-ins
Built into change management
Impact analysis is part of the dry-run step for CA changes. Operators see modeled blast radius before approval and apply - the same workflow that captures pre/post snapshots for rollback.