Mar 07 2019 10:17 AM
Mar 07 2019 10:17 AM
I have not been able to find a way to block the access of logging into Microsoft Teams on a mobile device. Issues below:
Any help or idea would be great. We are remote company so it would have to be done by the cloud. If we were to share HIPAA info via teams, we would not want them to be able to see this info through their phone.
My only option I can think of using mobile device management through a company where they install the app on their phone and we can lock it down and also make sure they are using secure login to their phone (such as face unlock, pin, fingerprint, etc).
Mar 07 2019 01:09 PM
If you're using Azure AD you should be able to create conditional access policies to block Teams from mobile devices. We do something similar to prevent certain users from getting Exchange Online on a mobile device.
I don't know what level of Azure AD license it requires.
Mar 07 2019 01:12 PM
Thanks guys. I know this is a bit off topic but related to same thing, but is there a way to whitelist IPs from using microsoft programs on the phone, like Teams, Exchange, etc? Trying to see if there's a route that is included with Office 365 business licensing.
Mar 07 2019 01:18 PMSolution
You need to look at two features in the EMS product
1. Intune App Protection policies
2. Azure AD Conditional Access
This will allow you to have an entirely secure environment for data in the Teams mobile app on either iOS or Android. Intune App Protection encrypts the apps data, requires passcodes, and prevents copy/paste into other apps. Conditional Access can then only allow access from these protected Applications.
Mar 07 2019 01:43 PM
Mar 12 2021 03:14 PM
@llimas it's a current feature, as per the messages above look up Conditional Access.
Mar 14 2021 07:20 AM
@llimas It uses an App Protection Policy configured through Intune, but this isn't 'MDM'. MDM would be where people register their device, App Protection Policies require no registration and are local only to the app.
There's no other way, as this way already exists.
Sep 27 2021 05:39 AM