azure-docs Cannot create Conditional Access Rules with Graph API for workload identities

I receive the following error when I want to create Conditional Access rules with Graph API for Workload Identities:

1150: Cannot create or update policies with workload identity premium features. Upgrade to a workload identity premium P1 or P2 license and try again I cannot find any information about this license. In the documentation, the following is noted: In public preview, you can scope Conditional Access policies to service principals in Azure AD with an Azure Active Directory Premium P2 edition active in your tenant. After general availability, additional licenses might be required. It is still in preview though?

Document Details

⚠ Do not edit this section. It is required for learn.microsoft.com ➟ GitHub issue linking.

ID: 60d23869-94f5-22cc-425e-4bf675d84ce0
Version Independent ID: 5105047f-04bf-87ef-ee8e-3e9bf9b5ac3a
Content: Azure Active Directory Conditional Access for workload identities preview - Microsoft Entra
Content Source: articles/active-directory/conditional-access/workload-identity.md
Service: active-directory
Sub-service: conditional-access
GitHub Login: @MicrosoftGuyJFlo
Microsoft Alias: joflore

Nov 11 '22 13:11 joostjansenskg

@joostjansenskg Thanks for your feedback! We will investigate and update as appropriate.

Nov 11 '22 15:11 SaibabaBalapur-MSFT

@joostjansenskg

https://thesleepyadmins.com/2022/08/21/microsoft-graph-restrict-access-using-conditional-access-policy/

Disclaimer: This response contains a reference to a third-party World Wide Web site. Microsoft is providing this information as convenient to you. Microsoft does not control these sites and has not tested any software or information found on these sites; therefore, Microsoft cannot make any representations regarding the quality, safety, or suitability of any software or information found there.

We have requested author to updated doc as per requirement.

Nov 14 '22 06:11 SaibabaBalapur-MSFT

@MicrosoftGuyJFlo Can you please check and add your comments on this doc update request as applicable.

Nov 14 '22 06:11 SaibabaBalapur-MSFT

Thank you for the link, but it is not helping me with this issue. We are creating our Conditional Access rules via PowersShell Graph API scripts, but if we want to create rules with Workload Identities, we are receiving the following error 1150: Cannot create or update policies with workload identity premium features. Upgrade to a workload identity premium P1 or P2 license and try again. It looks like a new license is required, but I cannot find any information about it.

Nov 14 '22 08:11 joostjansenskg

@joostjansenskg I'm going to assign this to the document author so they can take a look at it accordingly.

@MicrosoftGuyJFlo Please review it.

Nov 14 '22 08:11 SaibabaBalapur-MSFT

#label:"awaiting-product-team-response"

Nov 14 '22 15:11 MicrosoftGuyJFlo

Note out to the PM responsible. Waiting for response.

Nov 14 '22 15:11 MicrosoftGuyJFlo

@joostjansenskg the Product Group got back to me today and suggest you open a support request so this can be further diagnosed. #please-close

Nov 21 '22 17:11 MicrosoftGuyJFlo