problems with conditional access for unmanaged devices

%3CLINGO-SUB%20id%3D%22lingo-sub-770371%22%20slang%3D%22en-US%22%3Eproblems%20with%20conditional%20access%20for%20unmanaged%20devices%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-770371%22%20slang%3D%22en-US%22%3E%3CP%3Ehello%20all.%20i%20have%20taken%20over%20a%20situation%20where%20the%20client%20wants%20to%20prevent%20access%20to%20office%20365%20resources%20with%20unmanaged%20devices%20such%20as%20non-domain%20joined%20windows%20computers%20and%20mobile%20devices.%20i%20inherited%20a%20configuration%20that%20was%20supposedly%20working.%20however%20something%20about%20the%20configuration%20is%20not%20prevent%20my%20test%20computer%20from%20accessing%20the%20resources.%20i%20feel%20there%20is%20a%20step%20missing.%20i%20realize%20this%20is%20a%20broad%20question%20though%20i%20was%20hoping%20that%20someone%20has%20a%20good%20guide%20from%20start%20to%20finish%20so%20i%20can%20check%20my%20settings.%20thanks%20in%20advance.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-770371%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EOffice%20365%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-773947%22%20slang%3D%22en-US%22%3ERe%3A%20problems%20with%20conditional%20access%20for%20unmanaged%20devices%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-773947%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F380966%22%20target%3D%22_blank%22%3E%40Jeffrey_Tucker%3C%2FA%3E%26nbsp%3B%20How%20about%20conditional%20access%20based%20on%20DNS%20configuration%20of%20your%20AD%20Forest%20Domain.%20That%20should%20certainly%20fix%20it.%20But%2C%20is%20your%20Test%20machine%20part%20of%20the%20Internal%20Network%20or%20domain%20joined%20%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-773988%22%20slang%3D%22en-US%22%3ERe%3A%20problems%20with%20conditional%20access%20for%20unmanaged%20devices%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-773988%22%20slang%3D%22en-US%22%3EWould%20recommend%20Device%20based%20conditional%20access%20with%20Intune%3CBR%20%2F%3E%3CBR%20%2F%3EThe%20following%20article%20explains%20it%20then%20there%20should%20be%20plenty%20of%20guides%20around%20for%20it%3CBR%20%2F%3E%3CBR%20%2F%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fintune%2Fconditional-access-intune-common-ways-use%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fintune%2Fconditional-access-intune-common-ways-use%3C%2FA%3E%3CBR%20%2F%3E%3CBR%20%2F%3EHope%20that%20helps%3CBR%20%2F%3E%3CBR%20%2F%3EBest%2C%20Chris%3C%2FLINGO-BODY%3E
Highlighted
Occasional Visitor

hello all. i have taken over a situation where the client wants to prevent access to office 365 resources with unmanaged devices such as non-domain joined windows computers and mobile devices. i inherited a configuration that was supposedly working. however something about the configuration is not prevent my test computer from accessing the resources. i feel there is a step missing. i realize this is a broad question though i was hoping that someone has a good guide from start to finish so i can check my settings. thanks in advance.

3 Replies
Highlighted

@Jeffrey_Tucker  How about conditional access based on DNS configuration of your AD Forest Domain. That should certainly fix it. But, is your Test machine part of the Internal Network or domain joined ?

 

Highlighted
Would recommend Device based conditional access with Intune

The following article explains it then there should be plenty of guides around for it

https://docs.microsoft.com/en-us/intune/conditional-access-intune-common-ways-use

Hope that helps

Best, Chris
Highlighted

@Jeffrey_Tucker 

 

Use Conditional Access - Device based as suggested earlier.. for more details refer below article..

 

https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/conditions

 

Thanks

 

Robin Nishad

Consultant