cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Disable Office 365 Products ability to download (MOBILE)

skylarh
Copper Contributor

‎Oct 10 2023 10:07 AM

‎Oct 10 2023 10:07 AM

Disable Office 365 Products ability to download (MOBILE)

Hello,

 

I am trying to disable the ability for people to download files from the Teams / Outlook applications on their mobile devices. 

I selected the Disable Downloads feature from a Conditional Access area shown here, however, while testing on my mobile device, I was able to export the files / download them without any issues. 

skylarh_0-1696957574042.png

 

 

1,951 Views
0 Likes
17 Replies
Reply
17 Replies
eliekarkafy

‎Oct 10 2023 10:30 AM

‎Oct 10 2023 10:30 AM

Re: Disable Office 365 Products ability to download (MOBILE)

@skylarh did you create the policy in MDCA as well ? and in your conditional access did you set to include android OS ?

0 Likes
Reply
skylarh

‎Oct 10 2023 10:39 AM

‎Oct 10 2023 10:39 AM

Re: Disable Office 365 Products ability to download (MOBILE)

@eliekarkafy - I did include Android and iOS in this CA policy. When trying to do the MDCA I get this error unless I am in the wrong section.

skylarh_0-1696959587435.png

 

0 Likes
Reply
eliekarkafy

‎Oct 10 2023 10:45 AM

‎Oct 10 2023 10:45 AM

Re: Disable Office 365 Products ability to download (MOBILE)

@skylarh in the app connector in MDCA you have added the M365 app ?

eliekarkafy_0-1696959893728.png

 

0 Likes
Reply
eliekarkafy

‎Oct 10 2023 10:47 AM

‎Oct 10 2023 10:47 AM

Re: Disable Office 365 Products ability to download (MOBILE)

you dont need to create a policy from here the CA that you create will communicate with MDCA to protect your targetted app
0 Likes
Reply
skylarh

‎Oct 10 2023 10:48 AM

‎Oct 10 2023 10:48 AM

Re: Disable Office 365 Products ability to download (MOBILE)

@eliekarkafy - Shown here, it is added. 

skylarh_0-1696960129200.png

 

0 Likes
Reply
eliekarkafy

‎Oct 10 2023 10:58 AM

‎Oct 10 2023 10:58 AM

Re: Disable Office 365 Products ability to download (MOBILE)

try from a browser using the mobile device and not from the app itself
0 Likes
Reply
skylarh

‎Oct 10 2023 11:01 AM

‎Oct 10 2023 11:01 AM

Re: Disable Office 365 Products ability to download (MOBILE)

@eliekarkafy - Same issue, I was able to download from outlook.com

0 Likes
Reply
eliekarkafy

‎Oct 10 2023 11:05 AM

‎Oct 10 2023 11:05 AM

Re: Disable Office 365 Products ability to download (MOBILE)

your user is licensed with the P1 License ?
0 Likes
Reply
skylarh

‎Oct 10 2023 11:09 AM

‎Oct 10 2023 11:09 AM

Re: Disable Office 365 Products ability to download (MOBILE)

Our tenant has an E5 license assigned with an Entra ID P2 assigned.

I have gone ahead and assigned myself an Azure Information Protection Premium P1 license to see if that will change it.
0 Likes
Reply
eliekarkafy

‎Oct 10 2023 11:11 AM

‎Oct 10 2023 11:11 AM

Re: Disable Office 365 Products ability to download (MOBILE)

the E5 inlcudes all the license required for your setup , please try with the same user using an Edge browser in your machine and see if it block you
0 Likes
Reply
skylarh

‎Oct 10 2023 11:15 AM

‎Oct 10 2023 11:15 AM

Re: Disable Office 365 Products ability to download (MOBILE)

So it worked on a browser-based version, however, the apps do not work. We would need to find a way for it to cascade down to the applications.
0 Likes
Reply
eliekarkafy

‎Oct 10 2023 11:19 AM

‎Oct 10 2023 11:19 AM

Re: Disable Office 365 Products ability to download (MOBILE)

MDCA session controls are built to work with any browser only such as chrome and edge through the reverse proxy. if you want to manage the apps on mobile devices you can use the app protection policy in Intune with allows you to bloc downloads

https://learn.microsoft.com/en-us/mem/intune/apps/app-protection-policy
0 Likes
Reply
skylarh

‎Oct 10 2023 12:38 PM

‎Oct 10 2023 12:38 PM

Re: Disable Office 365 Products ability to download (MOBILE)

@eliekarkafy I can't really find what I am looking for in Intune. Would you know the policy for it? All of these devices are not managed.  

0 Likes
Reply
eliekarkafy

‎Oct 10 2023 12:44 PM

‎Oct 10 2023 12:44 PM

Re: Disable Office 365 Products ability to download (MOBILE)

even if the devices are not managed you can control the outlook application by targeting the users

https://github.com/MicrosoftDocs/memdocs/blob/main/memdocs/intune/protect/tutorial-protect-email-on-...
0 Likes
Reply
JosvanderVaart

‎Oct 11 2023 01:21 AM

‎Oct 11 2023 01:21 AM

Re: Disable Office 365 Products ability to download (MOBILE)

Are these mobile devices managed in Intune, or are these devices unknown in the environment? If so, you can also use mandatory compliancy in combination with app enforced restrictions. (https://learn.microsoft.com/en-us/sharepoint/control-access-from-unmanaged-devices)
0 Likes
Reply
skylarh

‎Oct 11 2023 06:24 AM

‎Oct 11 2023 06:24 AM

Re: Disable Office 365 Products ability to download (MOBILE)

@JosvanderVaart - These are devices unknown to the company, all personal cell phones. 

I have assigned myself the E5 license as it has intune on it, and it didn't restrict me. For our workflow to keep it most efficient, our employees need to have access to teams on their phones for quick responses. 

0 Likes
Reply
skylarh

‎Oct 11 2023 06:24 AM

‎Oct 11 2023 06:24 AM

Re: Disable Office 365 Products ability to download (MOBILE)

Thanks for this, I'll take a further look at it.
0 Likes
Reply