Managed ISPM

MSP's manage customer tenants over GDAP and there are some Huntress Managed CA policies that should allow exclusion of our Microsoft Partner tenant. For example, deployment of the "[HUNTRESS] Restrict Azure Portal Management" policy blocks the partner from accessing the Entra Admin center page over GDAP, with error "Your sign-in was successful but you don't have permission to access this resource". This would be solved by excluding the partner tenant ID.

By default, it appears you cannot edit the targeting of the Huntress Managed Policies. While we do our best, we do have some customers with accounts that do not have the correct licensing to utilize CA. An option to switch targeting from all users to a group we have designated for licensed users is a must have for us to stay compliant with Microsoft license agreements.

This may already be on the roadmap, but just like there are 'Huntress Managed' CA policies, it would be great to have Custom CA policies that we can create with our own settings and deploy as a baseline across multiple tenancies.