Microsoft AD SSO (OAuth2) with conditional access

Hello everyone,
Has anyone here tried using Microsoft SSO with Conditional Access (Policy)?
As soon as I enable the “Require device to be marked as compliant” option there, I can’t log in.

Then I am not redirected to the seafile server at all, but get this error message
“An unexpected error has occurred. Your IT department may be able to help you.”

In the Azure signing log, I only get the following error message: “Require compliant device”