Forum Discussion
Creating a mobile device management policy to force iOS devices to use Outlook?
If there a way to create a Mobile Device Management policy that prevents iPhone/iPad users from accessing their corporate email using anything but the Outlook for Mobile iOS client?
- Awesome!
Adding to that: I like to configure both Mobile Device Policies and Conditional Access.
Conditional Access filters on device platform and I have seen some mail apps that don't provide their platform in the request. This causes CA to allow this request.
The Exchange way will block them more rigid.
6 Replies
Since CA requires Azure AD P1 or equivalent license, I thought I'd threw in Exchange's own method to achieve this: https://docs.microsoft.com/en-us/exchange/clients-and-mobile-in-exchange-online/outlook-for-ios-and-android/secure-outlook-for-ios-and-android#leveraging-exchange-online-mobile-device-policies
- Awesome!
Adding to that: I like to configure both Mobile Device Policies and Conditional Access.
Conditional Access filters on device platform and I have seen some mail apps that don't provide their platform in the request. This causes CA to allow this request.
The Exchange way will block them more rigid. Thanks, VasilMichev.
Do you know what level of Microsoft 365 Ex licensing a Microsoft 365 Business license equates to? Does it have the equivalent of a Microsoft 365 E3 license?
The equivalent would be O365 for Business, but I believe now they've added the required Azure AD Premium bits, so you should be fine either way.
- This should be done through Conditional Access. You can use the 'approved app' for this https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/app-based-conditional-access
Thijs Lecomte, ah brilliant! That's exactly what I was looking for.
Thank you!
