Intune and Global Email sync block rule

New Contributor



We currently have a global block rule on Exchange Online.  We then use our Sophos MDM EAS proxy to authorise devices for email sync that are in a compliant state.


I am looking at moving our MDM to Intune and want to set up some test devices.  Does anyone know how I can implement a similar setup with Intune so that compliant devices can be made exceptions to the global block rule to allow them to sync email.


Thank you.

2 Replies
best response confirmed by Swanny (New Contributor)
You should look into Conditional Access. Here you can configure which users can receive access to corporate resources. You could create a conditional access policy and scope it to a specific set of users.

@Thijs Lecomte 


Thank you I will take a look :)