Forum Discussion

skipster311-175's avatar
skipster311-175
Brass Contributor
Feb 14, 2022
Solved

Mobile device mailbox policies vs. Intune compliance policies

Hello 

I have a high level executive that wants to use the native outlook client that comes built in with iOS. I know about the "apple internet" app in azure, so i know i can achieve modern auth. The question i have is how can i compare the "Mobile device mailbox policy" settings against what is offered in a compliance policy in Intune ?

Conditional Access
Intune
mobile device management (mdm)
  • Rudy_Ooms_MVP's avatar
    Rudy_Ooms_MVP
    Feb 15, 2022
    Yes indeed... the native mail client cant be targetted with app protection so when you are stepping it up a notch and creating a conditional access rule to require app protection.... you will be blocked

7 Replies

  • Moe_Kinani's avatar
    Moe_Kinani
    Bronze Contributor
    Feb 15, 2022
    Hi,

    You can go through the documentation below, I think you need to compare against Compliance Policy and more importantly App Protection Policy.
    Are you trying to disable un-approved apps from accessing your email? If yes, use combination of App Protection Policy and Conditional Access.

    Hope this helps!
    Moe

    https://docs.microsoft.com/en-us/mem/intune/protect/compliance-policy-create-ios

    https://docs.microsoft.com/en-us/exchange/clients/exchange-activesync/mobile-device-mailbox-policies?view=exchserver-2019

    https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/howto-policy-approved-app-or-app-protection
    • Rudy_Ooms_MVP's avatar
      Rudy_Ooms_MVP
      MVP
      Feb 15, 2022
      I am not exactly sure what you are asking but
      +1 App Protection as it is really important and the native email app on an Ios is not capable of having app protection applied.
      • skipster311-175's avatar
        skipster311-175
        Brass Contributor
        Feb 15, 2022
        What i am asking, is a comparison between what a compliance policy in Intune, vs. aa mobile device mailbox policy. What policy settings are similar, where is there overlap between the two. I have found what i was looking for. Below links detail what is available . Regarding App protection policies not being available when using the native email app for iOS mail client. Can you point me to a link that talks about this ?
        https://docs.microsoft.com/en-us/exchange/clients-and-mobile-in-exchange-online/exchange-activesync/mobile-device-mailbox-policies
        https://docs.microsoft.com/en-us/mem/intune/protect/compliance-policy-create-ios

Resources