Blog Post

Outlook Blog
2 MIN READ

Conditional Access in Outlook on the web for Exchange Online

DavidLos's avatar
DavidLos
Icon for Microsoft rankMicrosoft
Oct 05, 2018
  We live in a world where employees want to use a wide range of devices; this includes corporate owned assets, as well as their personal devices, and public or shared devices.  While we want every...
Updated Oct 05, 2018
Version 1.0
DavidLos's avatar
Icon for Microsoft rankMicrosoft
Joined October 05, 2017
View Profile
Outlook Blog

Welcome to the Outlook Blog! Learn best practices, news, and trends and directly from the Outlook team.

Derek_Pickell's avatar
Derek_Pickell
Copper Contributor
May 27, 2020

Hi David, great article thanks.  I have a follow up question regarding implementation.

 

I successfully configured the Conditional Access policy for Windows only and for browser only and it works as designed so I answered my own previous question, however...

 

When changing my EXO OWAMailboxPolicy setting for ConditionalAccessPolicy: to ReadOnly I found that it automatically added content to the following line: ConditionalAccessFeatures as shown below, where it was previously blank.  I can't find any information on what these options mean and if there is any way to edit them. 

 

  • ConditionalAccessFeatures : {Offline, AttachmentDirectFileAccessOnPrivateComputersEnabled,
    AttachmentDirectFileAccessOnPublicComputersEnabled,
    AttachmentPrintWithoutDownload}

 

Of particular interest is AttachmentPrintWithoutDownload

Can I disable this so that users cannot Download or Print content from a non-compliant computer?