Remove email access to non corporate devices

Hi there, I've started to migrate all of our devices into InTune and naturally there are users out in the business against an MDM on their device. With no view of assets I was wondering if ...

Conditional Access

Intune

Rudy_Ooms_MVP
Apr 15, 2021
Hi,

It sounds you need to create a conditional access policy that targets exchange online and all other users except the director group. (In my opinion, not the best group to exclude... they are the most likely targeted) and require compliant devices.

So all users need to have enrolled/comliant devices except the director group... please do not forgot the create app protection policies for managed and unmanaged devices.

Here is some explanation:
The Chronicles of MAM - Call4Cloud Setting up IOS App protection policies

Rudy_Ooms_MVP

MVP

Apr 15, 2021

Hi,

It sounds you need to create a conditional access policy that targets exchange online and all other users except the director group. (In my opinion, not the best group to exclude... they are the most likely targeted) and require compliant devices.

So all users need to have enrolled/comliant devices except the director group... please do not forgot the create app protection policies for managed and unmanaged devices.

Here is some explanation:

The Chronicles of MAM - Call4Cloud Setting up IOS App protection policies

KurtisM1990

Copper Contributor

Apr 15, 2021

Hi Rudy,

Yeah I agree on your director comment but I'm sure you know how it is! I'll have a look into it.

Rudy_Ooms_MVP
MVP
Apr 15, 2021
Hi,

Yes I do 🙂 I know it's hard... take a look at the link I just added with some explanation...

Forum Discussion

Remove email access to non corporate devices

Resources