Event details
Is there a way we can prevent our corporate users from signing into the Edge browser with their work accounts on personal devices, but still allow them to log into apps and things such as Office.com on these personal devices? The personal devices are not registered anywhere in Entra/InTune. With the aim being to allow Edge password manager but prevent them from accessing the saved/synced credentials on non-corporate devices.
- Joe_Lurie
Microsoft
Reece I'm not sure I follow. If these devices are not managed, we can't control policy on the devices. However, you can use Entra Conditional Access to control what users can do on unmanaged devices. See Set up device-based Conditional Access policies with Intune - Microsoft Intune | Microsoft Learn for more information.
Thanks for the response. Yes, so in the way you can use CA to determine what users can access on unmanaged devices, such as preventing the use of SharePoint on them, I'm trying to specifically block the work account from being signed into the Edge browser. However Edge does not appear to be a cloud app option with CA policies.
- Joe_Lurie
Not to toss the ball into someone else's court, but this team is dedicated to Windows and Intune management, and this may be something that needs to be controlled via Edge policies. Check this Learn doc for Edge Identity Support: Microsoft Edge identity support and configuration | Microsoft Learn
