Hello Vijay
Here is the steps you can follow
- Sign in to the Microsoft 365 Admin Center (admin.microsoft.com).
- 'Navigate to the "Azure Active Directory" portal.
- In the left-hand menu, click on "Conditional Access."
- Create a new Conditional Access policy by clicking on the "+ New policy" button.
- Give your policy a meaningful name and describe it, if desired.
- Under the "Users and groups" section, select the targeted user or group who should be affected by this policy.
- In the "Cloud apps or actions" section, click on the "+ Include" button and choose "Select apps."
- From the application list, select "SharePoint Online," and any other apps you want to block on unmanaged devices.
- In the "Conditions" section, add the following conditions: - Under "Device platforms," select "All platforms." - Under "Client apps," select "Browser."
- Under the "Access controls" section, configure the following settings: - For "Grant," choose "Block access." - Check the box for "Require approved client app" and select "Yes."
- Scroll down and click on the "Exclude" tab.
- Click on the "+ Exclude" button and choose "Select apps."13. In the application list, select "Teams."
- Save the policy to apply the changes.