Mar 27 2018 10:05 AM
Hello, does anyone have an example policy for this scenario that we could look over?
Mar 27 2018 10:22 AM
Specifically, we would like mobile devices to be restricted from EAS unless they are enrolled in Intune, with a group of excepted VIPS.
Mar 27 2018 12:49 PM
SolutionHi Robert,
I think you should have a look at the documentation from Microsoft here: https://docs.microsoft.com/en-us/azure/active-directory/active-directory-conditional-access-mam
It defines scenarios and the corresponding settings for MAM + CA. I think you will find everything in there what is needed to accomplish your described goal.
best,
Oliver
Mar 27 2018 01:43 PM
Thank you Oliver! The documentation I was finding with my Google searches were all pointing towards the old portal and setting things up in there, and then the settings did not match the new portal. this seems right on par with what I was looking for. I will give it a shot.
Mar 27 2018 12:49 PM
SolutionHi Robert,
I think you should have a look at the documentation from Microsoft here: https://docs.microsoft.com/en-us/azure/active-directory/active-directory-conditional-access-mam
It defines scenarios and the corresponding settings for MAM + CA. I think you will find everything in there what is needed to accomplish your described goal.
best,
Oliver