Merge pull request #249995 from MicrosoftGuyJFlo/patch-51

prmerger-automator[bot] · web-flow · commit de9258f79534 · 2023-08-31T14:12:24.000Z
Update workload-identity.md
diff --git a/articles/active-directory/conditional-access/workload-identity.md b/articles/active-directory/conditional-access/workload-identity.md
@@ -73,7 +73,7 @@ Create a risk-based Conditional Access policy that applies to service principals
    1. Set the **Configure** toggle to **Yes**.
    1. Select the levels of risk where you want this policy to trigger.
    1. Select **Done**.
-1. Under **Grant**, **Block access** is the only available option. Access is blocked when a token request is made from outside the allowed range.
+1. Under **Grant**, **Block access** is the only available option. Access is blocked when the specified risk levels are seen.
 1. Your policy can be saved in **Report-only** mode, allowing administrators to estimate the effects, or policy is enforced by turning policy **On**.
 1. Select **Create** to complete your policy.
 
