05-10-2018 04:46 AM
05-11-2018 05:29 AM
05-21-2018 07:29 AM
As Alexander said you can use Conditional Access and allow approved apps only. But remember conditional access works with modern authentication. If an app uses legacy auth (basic auth, etc) like for example Exchange ActiveSync you will not block it with Conditional Access unless you take additional steps like EAS Quarantine. But even then you have still POP, SMTP, EWS, etc. Therefore you would need to block this via ADFS for example or wait until Conditional Access is able to block legacy auth also.
05-21-2018 02:52 PM
Does conditional access work for third party (non Microsoft) applications? Is the Intune SDK or Intune wrapper required to enable conditional access when using Intune MAM?
05-22-2018 12:36 AM
Conditional access and MAM are complitely different things.
In order to block app using Condtional Access, application needs to be integrated with Azure AD. After that you will be able to select app as target for CA Policy.
MAM policy can be deployed to any mobile application with Intune SDK. To target MAM policy for app, you just need to add bundleID on stage of targeting app protection policy.
In easy terms, CA policy is checking your connection to meet required conditons (risk level, app used, location) and MAM policy is controlling what you can do with corporate data in mobile application.
by jarvis2020 on June 09, 2020
by PaulMcD on June 01, 2020
by RSParkway on May 15, 2020
by Intune Support Team on May 14, 2020
by Ross Smith IV on April 30, 2020
by Intune Support Team on April 20, 2020