Jan 19 2022 06:38 PM
What is the best method to secure a Windows or Mac BYOD device without enrolment? Can Intune App Protection policies be applied to desktop client applications - Teams/Outlook/Word/Excel/PowerPoint? E.g., If a user is allowed to use Outlook or Teams desktop app on their personal Windows laptop, can that user be prevented from downloading an attachment or a file from within teams. How about stopping the user from taking a screenshot?
Or true BYOD security can only be achieved with enrolment of the device in Intune? If yes, it will be problematic as end users will not be happy to enrol their personal devices into Intune.
Jan 19 2022 10:17 PM - edited Jan 19 2022 10:19 PM
App protection for windows --> Windows information protection --> user needs to be in the mam scope. And of course configure WIP :).
Force Windows Information Protection with Conditional Access | (inthecloud247.com)
But WIP is not my cup of tea... I rather just make sure all devices are just managed and enforced with conditional access... but that is only me :)
BYOD is great for mobile devices... :)
Jan 19 2022 10:51 PM
Jan 20 2022 01:59 AM
Jan 20 2022 02:06 AM
Jan 20 2022 06:49 PM
Jan 21 2022 12:09 AM