Apr 15 2021 06:33 AM
Hi there,
I've started to migrate all of our devices into InTune and naturally there are users out in the business against an MDM on their device.
With no view of assets I was wondering if it's possible to remove access to O365 from their device but create an exempt group for our Directors who have their own devices but require access?
Apr 15 2021 06:40 AM - edited Apr 15 2021 06:40 AM
SolutionHi,
It sounds you need to create a conditional access policy that targets exchange online and all other users except the director group. (In my opinion, not the best group to exclude... they are the most likely targeted) and require compliant devices.
So all users need to have enrolled/comliant devices except the director group... please do not forgot the create app protection policies for managed and unmanaged devices.
Here is some explanation:
The Chronicles of MAM - Call4Cloud Setting up IOS App protection policies
Apr 15 2021 06:41 AM
Apr 15 2021 06:42 AM
Apr 15 2021 06:40 AM - edited Apr 15 2021 06:40 AM
SolutionHi,
It sounds you need to create a conditional access policy that targets exchange online and all other users except the director group. (In my opinion, not the best group to exclude... they are the most likely targeted) and require compliant devices.
So all users need to have enrolled/comliant devices except the director group... please do not forgot the create app protection policies for managed and unmanaged devices.
Here is some explanation:
The Chronicles of MAM - Call4Cloud Setting up IOS App protection policies