From 20febd0822d27911c2aff21f25b1c3915a995fb8 Mon Sep 17 00:00:00 2001
From: Noah Talerman <47070608+noahtalerman@users.noreply.github.com>
Date: Wed, 27 Aug 2025 15:35:04 -0700
Subject: [PATCH] Entra conditional access guide (#32343)

- What happens if you don't see a green checmark?

Context:
https://github.com/fleetdm/fleet/issues/32228#issuecomment-3226588420

---------

Co-authored-by: Eric <eashaw@sailsjs.com>
---
 articles/entra-conditional-access-integration.md | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/articles/entra-conditional-access-integration.md b/articles/entra-conditional-access-integration.md
index edf480fb3a..ffbe88d909 100644
--- a/articles/entra-conditional-access-integration.md
+++ b/articles/entra-conditional-access-integration.md
@@ -25,6 +25,8 @@ After this is done, the "Fleet partner" will be shown with a "Pending activation
 
 To enforce conditional access, end users must be a member of a group called "Fleet conditional access" in Entra. First create this group in Entra and then assign users to it.
 
+Fleet requires that this group is called "Fleet conditional access".
+
 ## Step 3: Connect Fleet to Entra
 
 Now we need to connect and provision Fleet to operate on your Entra ID tenant (activate partner).
@@ -35,10 +37,10 @@ Once you have your tenant ID, in Fleet, head to **Settings > Integrations > Cond
 
 ![Conditional access setup](../website/assets/images/articles/conditional-access-setup-554x250@2x.png)
 
-After clicking **Save** you will be redirected to https://login.microsoftonline.com to consent to the permissions for Fleet's multi-tenant application.
-After consenting you will be redirected back to Fleet (to `/settings/integrations/conditional-access`).
+After clicking **Save** you will be redirected to https://login.microsoftonline.com to consent to the permissions for Fleet's multi-tenant application. 
+
+After consenting you will be redirected back to Fleet (to `/settings/integrations/conditional-access`). If you don't see a green checkmark in Fleet, please verify that you have a "Fleet conditional access" [group in Entra](#step-3-connect-fleet-to-entra). If you do and you still don't see a green checkmark, please [reach out to support](https://fleetdm.com/support).
 
-The next step is to enable and configure the integration on your teams.
 
 ## Step 4: Deploy Company Portal and the Platform SSO configuration profile