Can we block certain ports and IP's via Intune which may be vulnerable on open network like Wi-Fi and other public networks when end users are connecting their work devices to it?

Vinod Survase 4,756 Reputation points
2023-10-28T17:15:51.82+00:00

Can we block certain ports and IP's via Intune which may be vulnerable on open network like Wi-Fi and other public networks when end users are connecting their work devices to it?

For example: RDP port and any others which should be blocked

Microsoft Intune Security
Microsoft Intune Security
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
443 questions
Microsoft Intune Configuration
Microsoft Intune Configuration
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Configuration: The process of arranging or setting up computer systems, hardware, or software.
1,945 questions
Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
5,320 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Crystal-MSFT 50,591 Reputation points Microsoft Vendor
    2023-10-30T02:23:20.61+00:00

    @Vinod Survase, Thanks for posting in Q&A. In Intune, we can only configure firewall policy to set firewall rule to block ports or IP address on windows device. Here is a link for your reference:

    https://learn.microsoft.com/en-us/mem/intune/protect/endpoint-security-firewall-profile-settings

    However, it's important to note that blocking certain ports and IPs may impact the functionality of certain apps or services. It's recommended to thoroughly test any changes before implementing them in a production environment.

    Meanwhile, based on my researching, I find some articles describe we can control mobile device access to corporate resources using Conditional Access based on risk assessment. You can read them to see if they can help on your scenario:

    Hope the above information can help.


    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.