Forum Discussion
My favorite Conditional Access policies to implement (part one) - Blog Post
A bit of light reading today, but still an important topic worth discussing: Conditional Access! If you’re not very experienced with implementing these policies, this post might help set you up in th...
This comes exactly at the right time as I'm working on the initial setup for Conditional Access App Control Policies. Still reading throught it. Thank you!
No problem Olf, always happy to share!
- One question. Interestingly, you cannot control a user's ability to edit a document on Sharepoint with that it seems. I know I could try to do that with Sharepoint permissions but I was wondering. Did I miss something?
- No that is right! Session policies can do a lot in Microsoft 365 and other Cloud Apps, for example: Block downloads, block print, block cut or copy, block paste, put sensitivity labels on uploads etc.
But it cannot limit the permission to edit a document on SharePoint during a session from a unmanaged or non-compliant device. Maybe in the future! 😉- Is there any other way to achieve the following:
MS Teams connected Sharepoint site: Give guests view and members edit permissions for files in a library. Problem is: Guests and internal members are part of the same M365 group that is set as Site collection members, effectively granting guests edit permissions. Never liked that logic.