Conditional Access control

esnecho991 · ‎Sep 08 2020

is it possible to apply conditional access control on a device with one drive app? if a user is using one drive app and the device is not managed, block downloads.

Swaminathan_Arumugam · ‎Sep 09 2020

@esnecho991 You need to apply app protection policies with condition access to enable DLP in unmanaged devices.

https://docs.microsoft.com/en-us/mem/intune/apps/app-protection-policy

esnecho991 · ‎Sep 10 2020

@Swaminathan_Arumugam that requires intunes on my devices.

how about my user's laptop and mobile pads.

Swaminathan_Arumugam · ‎Sep 10 2020

@esnecho991

You need EMS E3 or M365 F3 lic to apply app protection policy using Intune.

esnecho991 · ‎Sep 10 2020

@Swaminathan_Arumugam thanks. is there any limitation on the platform where intunes can installed ?

We have servers, Desktop, and Linux machines. how to address that?

Swaminathan_Arumugam · ‎Sep 10 2020

@esnecho991 To achieve this you need to implement CASB

alexandertuvstrom · ‎Sep 12 2020

@esnecho991

Are the other devices in your environment hybrid azure ad joined? If you have it, you can create a conditional access rule "Block Unmanaged Device File Downloads".

Users and groups: All users

Cloud App: Office 365 SharePoint Online
Conditions:
- Client Apps: Mobile Apps and desktop clients
- Device state: Configure YES, Include: All device state, Exclude: Device Hybrid Azure AD joined
Access Controls: Block Access

Conditional Access control

Conditional Access control

Re: Conditional Access control

Re: Conditional Access control

Re: Conditional Access control

Re: Conditional Access control

Re: Conditional Access control

Re: Conditional Access control

Products (50)

Special Topics (27)

Video Hub (462)

Most Active Hubs

Most Active Hubs

Video Hub

Conditional Access control