Forum Discussion
Whitelist apps through Conditional Access?
Hello Techies! TL:DR Goal: I want to block all apps in Conditional Access except ones I have approved. Problem: Not all Microsoft apps are visible in the GUI.. What do? The long of it I have p...
Hi Alo Press,
Feel this policy does harm more than good. As I’m understanding your situation, you want to block IOS devices from accessing apps in your tenant, and most likely Admins URLs like SP admin, Teams or O365 Admin. This is not going to work because if you whitelist Exchange Online, Exchange Admin url (outlook.office.com/ecp) gets whitelisted as well. As you mentioned, you don’t have away to exclude Office Admin url or not all MSFT show in the GUI.
I have been in the same boat before, I wanted a method to block access to my resources only from devices I whitelist, so I created policy to allow access to the tenant from managed devices only.
Hope this helps!
Moe
Feel this policy does harm more than good. As I’m understanding your situation, you want to block IOS devices from accessing apps in your tenant, and most likely Admins URLs like SP admin, Teams or O365 Admin. This is not going to work because if you whitelist Exchange Online, Exchange Admin url (outlook.office.com/ecp) gets whitelisted as well. As you mentioned, you don’t have away to exclude Office Admin url or not all MSFT show in the GUI.
I have been in the same boat before, I wanted a method to block access to my resources only from devices I whitelist, so I created policy to allow access to the tenant from managed devices only.
Hope this helps!
Moe
