This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(160, 75%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESR%3C/text%3E%3C/svg%3E)
I have a MacBook and only allowed m364 web version. Now MacBooks are not fully enrolled in Intune. I want to block copy paste of credit card numbers from Microsoft office web to MacBook native notepad .
i have created a session policy and in filters
activiry type : copy paste
user id : test id
app: Microsoft online services
Now with that I have tried device tag not equal to intune compliant
Ans I have also tried user agent tag equals native client .
but it still doesn’t work.
what am I missing. Do I need to activate sessions control from conditional app control as well? Thanks
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 17%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
@sara rashid Thank you for reaching out to us, As I understand you trying to configure Session policies for activities within browser.
Would request you to review the below links on how to achieve this ask
https://www.youtube.com/watch?v=hPW3E51cIac
https://oceanleaf.ch/ca-dfca-session-policies/
https://learn.microsoft.com/en-us/defender-cloud-apps/session-policy-aad
Let me know if you have any further questions, feel free to post back.
Hi thanks for the information , I did exactly as intructed in the videos. The only difference is it works when I am blocking copy paste activity without content inspection but when I add sensitive information type like credit card number it doesn’t work. It lets it copy paste it.
how can I apply copy paste restriction on content inspection based on credit card and passport .
thanks
@sara rashid Refer to the steps mentioned here - https://blogs.perficient.com/2021/03/22/how-to-control-sensitive-data-on-unmanaged-devices-with-mcas-part-2-of-2/ further configuration is needed in the session policy.
@sara rashid Just checking in to see if above information was helpful. If you have any further updates on this issue, please feel free to post back.