![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(262.40000000000003, 82%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVS%3C/text%3E%3C/svg%3E)
504 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 30%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
@Vinod Survase, Thanks for posting in Q&A. In Intune, we can only configure firewall policy to set firewall rule to block ports or IP address on windows device. Here is a link for your reference:
https://learn.microsoft.com/en-us/mem/intune/protect/endpoint-security-firewall-profile-settings
However, it's important to note that blocking certain ports and IPs may impact the functionality of certain apps or services. It's recommended to thoroughly test any changes before implementing them in a production environment.
Meanwhile, based on my researching, I find some articles describe we can control mobile device access to corporate resources using Conditional Access based on risk assessment. You can read them to see if they can help on your scenario:
- Better Mobile Threat Defense connector with Intune
- Sophos Mobile Threat Defense connector with Intune
- Use BlackBerry Protect Mobile with Intune
- Pradeo Mobile Threat Defense connector with Intune
Hope the above information can help.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.