Forum Discussion

Copper Contributor

Nov 18, 2022

How to know users accessing mail outside of Itune

Hello team, I have a query that is scatching my head... I wanna know how I can find users outside of Intune, I wanna block them and force them within Intune... Regards Jamalie.

Intune

Mobile Device Management (MDM)

Moe_Kinani

Bronze Contributor

Nov 18, 2022

Hi @Jamalie

Many ways you can do this, first one came to my mind Navigate to Azure AD - Devices - All Devices - Export the devices to Excel - Filter results by Not Compliant and none for MDM. This will give you the idea of devices not managed by Intune. Then you can apply a Conditional Access to allow only Compliant Devices to access your tenant. You need to hand hold the users to register their devices depend if using hybrid or Azure AD registered.

Moe

https://learn.microsoft.com/en-us/azure/active-directory/conditional-access/howto-conditional-access-policy-compliant-device

JamaliePuran
Copper Contributor
Nov 18, 2022
Thank you for the feedback, we don't have the conditional access license ,what would be the alternative way.
- Moe_Kinani
  Bronze Contributor
  Nov 18, 2022
  I would go through the report you going to export and disable the access for the devices that not Compliant /not managed by intune.Check the activity column to have an idea of the stale devices. Without Conditional Access you need to keep doing this manually. CA is an essential security tool for transitioning to the cloud so you may need to consider it before moving workload to the cloud.
  Moe
  
  https://learn.microsoft.com/en-us/azure/active-directory/devices/manage-stale-devices
  - JamaliePuran
    Copper Contributor
    Nov 18, 2022
    Thank you for the feedback, for the manual blocking... I guess I could put together a script to iterate throughout the list...

Forum Discussion

How to know users accessing mail outside of Itune

Share

Resources