Home

Intune - Admin Network Restrictions

Highlighted
New Contributor

Hi, I'm fairly new to Intune and was hoping someone could point me in the right direction on this.

 

 

I am trying to create a policy that blocks all outgoing/incoming access (internet/email/RDP) when users are on an admin or priviliged account instead of their normal O365 account.

 

I have searched through and found plenty on blocking websites based on groups that the computers belong. However I havent seen anything on blocking based on profile type.  Any help in this regard is appreciated!

2 Replies
Highlighted
You could put those accounts into a new group "O365Admin Accounts" and then use Conditional Access to block some of those apps, see https://docs.microsoft.com/en-us/azure/active-directory/active-directory-conditional-access.
Instead of blocking, you may want consider enforcing MFA for those accounts.
Highlighted

Dean,

 

Thanks for the response! When I say admin accounts I'm talking about local admin accounts on the users local laptop. Does your comment still apply?

Related Conversations
Autosave Not Working
Promise46 in Word on
1 Replies
Admin roles with scope for single group
best79 in Office 365 on
5 Replies
onmicrosoft.com alias
Allinilla in Office 365 on
5 Replies
Help! Frustrated new 365 user!
asmaajm in OneDrive for Business on
2 Replies
Can Admin delete groups?
Jakob Rohde in Yammer on
0 Replies