Forum Discussion
Solved
Conditional Access - Allow only MS Teams desktop application on personal devices
Is it possible to set up conditional access policies that allow users to install and use Teams specifically on their personal devices? Currently, I'm only able to select the entire suite of Office 36...
- Hello kmann369,
In the conditional access policy, it's not possible to exclusively scope the Teams application due to its service dependencies. You may need to include the dependent applications or services in the conditional access policy scope.
For more information, please refer to: https://learn.microsoft.com/en-us/entra/identity/conditional-access/service-dependencies#policy-enforcement
If you need to restrict the download of sensitive information, you can utilize conditional access app control within the session policy of the conditional access policy.
Reference: https://learn.microsoft.com/en-us/defender-cloud-apps/use-case-proxy-block-session-aad.
Thanks for the reply. Yes I mean unmanaged devices. Currently we have a conditional access policy to only allow access to desktop O365 applications that are compliant and managed. I would like our users to be able to sign into the Teams desktop application on unmanaged devices but having trouble in doing so and limiting the ability to download company files to personal computers.
Were you able to allow access to Teams only?