Forum Discussion
Data Protection policies for web apps
Hi MohFarah, what is it that you are looking for exactly? Do you want to limit access to Office 365 Online? Like copy/paste/download on unmanaged devices? If so, you can do a couple of things:
- Restrict access from unmanaged devices to SharePoint Online and Exchange Online
- https://docs.microsoft.com/en-US/sharepoint/control-access-from-unmanaged-devices?WT.mc_id=365AdminCSH_spo
- https://docs.microsoft.com/en-us/powershell/module/exchange/set-owamailboxpolicy?view=exchange-ps (ReadOnly)
- Create a conditional access policy with https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/concept-conditional-access-session#application-enforced-restrictions
- https://docs.microsoft.com/en-us/defender-cloud-apps/proxy-intro-aad
Please note: When you set policies from the SPO admin portal. It will create 2 conditional access policies targeting all users. Keep that in mind ;).
Hope this helps.
Hi Oktay Sari,
What I'm looking is very simple:
Restrict limit acces to O365. So indeed like you mentioned, block copy/paste/download on unmanaged devices. I see that your provided me with some links, so I will go and have a look.
A brief summary of the situation at the client:
Currently moving from a on premise environment to a full Cloud only environment. So migrating a lot of data to SharePoint/Teams/OneDrive.
Some of the data being moved is very sensitive for the company and they wanna make sure that security is top notch, especially on unmanaged devices.