Forum Discussion
PKlapwijk
Dec 15, 2016MVP
Restrict email access to Exchange Online
Hi all, I have a situation of a customer without an on-prem Active Directory, only using some cloud apps, like Office 365. They want to block access to (in first place) e-mail on non managed dev...
PKlapwijk
Dec 16, 2016MVP
Hi Jasjit,
Thanks for the reply.
Yes tried that policy before, blocks OWA access and the use of the buildin mail app on Windows 10, but it still gives me access to Exchange Online by using Outlook 2016.
Also tried Conditional Access from the new Azure portal under Aure AD (in preview), same situation; blocking OWA and the buildin app, but still allows access via Outlook.
PKlapwijk
Dec 16, 2016MVP
I have enabled modern authentication for Exchange Online.
It now shows me a message access is blocked when I try to connect using Outlook, but is does that on domain joined Win10 devices as well.
I`m using Conditional Access from the new Azure Portal (https://blogs.technet.microsoft.com/enterprisemobility/2016/12/15/conditional-access-now-in-the-new-azure-portal/).
- JasjitChopraDec 16, 2016MVP
Hi PKlapwijk,
Let me try that in my lab setup - that kinda sounds strange and I would think MS would have thought of this scenario you are trying to achieve - which is a common ask from other customers too I presume.
I will get back to you and let you know.
Regards,
Jasjit
- PKlapwijkDec 16, 2016MVP
Hi JasjitChopra Yes it sounds very strange. Was happy Outlook was blocked at an Win10 device which is not domain joined. But than I cleared all the credentials on the domain joined machine and setup Outlook again and it is now blocked as well.
Thank you for your time testing this setup!
regards,
Peter
- JasjitChopraDec 16, 2016MVP
Ideally you should not test it on the same machine by clearing creds - but nonethelless will test and let you know.