Feb 24 2020 06:46 AM
I found this conversation:
an have the same issue. How to block all Office 365 Apps & exclude Teams?
I want to block on external networks the access to SharePoint Online, but allow Teams. Is there a way to accomplish that?
Thanks
Feb 24 2020 10:20 AM
Well Teams uses SPO at the backend, so are you OK with blocking access to any files-related functionality? And how exactly do you envision preventing external access, do you mean blocking Guest users or?
Feb 26 2020 06:26 AM
Yes, i know that. So is there a way to do this?
The idea was, when employees are not in the internal office network, they cannot use SharePoint & OneDrive but can use Teams for communication.
Feb 26 2020 07:53 AM
For that scenario, I would recommend simply adding IP restriction in the SPO/ODFB admin portal.
Feb 28 2020 06:23 AM
@Vasil Michev In my case, I have a specific group that will have access to Teams externally, but even creating the specific exclusion for it, it is being blocked. I saw that Sharepoint Online and Exhange Online also affect Teams, however the off-line release for this group is only for Teams and not the other applications. I have a case that looks like this:
Is there a method to solve this problem?
Mar 25 2020 09:56 AM
External access to other cloud applications can be restricted through conditional access policies, yes, but at the expense of the related functionality being restricted in the Teams client for external users.
Without external Exchange access the user will have no channel or private chat functionality.
Without OneDrive for Business access, the user will not be able to privately share any files.
Without SharePoint Online access, the user will not be able to access Teams and channel files.
Another consideration is that if 2FA is enabled for SharePoint, OneDrive, or Exchange, then it should be enabled for Teams also, otherwise the corresponding functionality will be restricted.