cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Can you restrict downloading from Teams?

Chris Brooks
Copper Contributor

‎Oct 17 2018 06:29 AM - last edited on ‎Jan 14 2022 05:22 PM by

‎Oct 17 2018 06:29 AM - last edited on ‎Jan 14 2022 05:22 PM by

Can you restrict downloading from Teams?

I would like to create a 'Any device, anywhere' conditional access policy where by if you are using a corporate domain joined computer it will let you access and download o365 files BUT if you are on a personal device e.g. home computer or public computer it will restrict downloads.  

 

I've created the policies needed using the [SharePoint Admin center] conditional access polices in Intune and initially I thought they worked great.  If I was on public computer it allowed me to access and edit OneDrive and SharePoint files within the web browser and if I tried to download them locally it wouldn't let me! Great!  However, I've spotted a loophole.  You can get around this by opening these files through Teams as the conditional access policy doesn't seem to apply to Microsoft Teams!  Anyone else spotted this or know a workaround or fix for this? 

54.8K Views
1 Like
5 Replies
Reply
5 Replies
Chris Webb

‎Oct 17 2018 07:12 AM

‎Oct 17 2018 07:12 AM

Re: Can you restrict downloading from Teams?

Not sure if you can get Teams to work, however if it works with SharePoint it will work in Teams soon when they replace the Files tab with SharePoint Modern Library UI. So it might be a matter of waiting for that release. No idea when that is coming but it should be by year end worse case, but it could be any week.

Go to Teams files tab, and click "Open in SharePoint", then try to see if it works from the attached Team SharePoint site. If it does, then the files tab release should fix your issue. Otherwise if it doesn't, then your settings aren't applying to the underlying SharePoint site the teams are attached to and I would check there!
0 Likes
Reply
David Phillips

‎Nov 07 2019 12:58 PM

‎Nov 07 2019 12:58 PM

Re: Can you restrict downloading from Teams?

I've been digging through CA and Intune policies, still no luck on this one.  Am I missing something simple?

0 Likes
Reply
David Phillips

‎Nov 08 2019 03:36 AM

‎Nov 08 2019 03:36 AM

RE: Can you restrict downloading from Teams?

@Tommek Does that allow your users to launch the Teams client on an unmanaged devices, but prevent them from using Teams to download files from SPO / OneDrive?  I'm not seeing that behavior here.

0 Likes
Reply
Tommek

‎Nov 09 2019 12:43 AM

‎Nov 09 2019 12:43 AM

RE: Can you restrict downloading from Teams?

@David Phillips no it doesn't allow users using Team client anymore. you can chose between no acces or only Webaccess from unmanaged devices...

 

if you would like to use teams client I think than you need to use CA and Cloud APP Security https://docs.microsoft.com/en-us/cloud-app-security/use-case-proxy-block-session-aad

 

0 Likes
Reply