I recently ran into an issue where First Sign-In Restore was blocked by the Conditional Access framework.
It seems that Conditional Access can interfere with the restore process during the first Windows sign-in, which may lead to unexpected behavior for users.
Fortunately, someone already documented a solution and troubleshooting steps here:
https://msendpointmgr.com/2026/02/25/troubleshooting-windows-first-sign-in-restore-when-conditional-access-gets-in-the-way/?utm_source=substack&utm_medium=email
It might be useful to include guidance or built-in handling for this scenario, as I assume other users in the community will run into the same problem.
Maybe this could be added as an improvement or documented workaround for all your fans :)
Thanks
I recently ran into an issue where First Sign-In Restore was blocked by the Conditional Access framework.
It seems that Conditional Access can interfere with the restore process during the first Windows sign-in, which may lead to unexpected behavior for users.
Fortunately, someone already documented a solution and troubleshooting steps here:
https://msendpointmgr.com/2026/02/25/troubleshooting-windows-first-sign-in-restore-when-conditional-access-gets-in-the-way/?utm_source=substack&utm_medium=email
It might be useful to include guidance or built-in handling for this scenario, as I assume other users in the community will run into the same problem.
Maybe this could be added as an improvement or documented workaround for all your fans :)
Thanks