We develop internal applications in .NET and are changing over to APPX/MSIX installations for deployment. We would like to avoid using any kind of internal Store by using sideloading. We would obviously have to allow non-admins the ability to do so via group policy.
Is there any way to control what they can install more specifically? Say, who signed the application? Or is it a pure "all-or-nothing" setting.