This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(147.20000000000002, 10%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
Hello,
Looking for a way to lock down a kiosk android to a single URL using Intune. Successfully can manage a Kiosk, but not to the level of just having a website be the only thing the device can access.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 35%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EZM%3C/text%3E%3C/svg%3E)
@JChildsJCMH,Thanks for posting in Q&A.
From your description, I know that you are looking for a way to lock down an Android device to a single URL via Intune.
Based on my research, we can create an app configuration policy for Microsoft Edge or Google Chrom and define a list of allowed URLs to achieve this.
Here are some steps you can refer.
1.Click App configuration policies > Click Add and select managed devices > Specify a name, select Android Enterprise as platform, select Fully Managed, Dedicated and Corporate-Owned Work Profile Only as Profile Type > Select Microsoft Edge or Google Chrom as Targeted app.
2.In Settings section, select Use configuration designer as Configuration settings format > Click Add and select Define a list of allowed URLs and Block access to a list of URLs > Enter the URL you want to allow.
3.In Assignment page, assign it to user or device group > Click create.
Note: you can block all URLs via Block access to a list of URLs and configure one specific URL in Define a list of allowed URLs to achieve this, because URL Allowlist works with URL Blocklist, it as exceptions to URL Blocklist, moreover the allowed list takes precedence over the block list.
Here are some links about how to configure URL format you can refer.
https://learn.microsoft.com/en-us/deployedge/microsoft-edge-policies#define-a-list-of-allowed-urls
https://learn.microsoft.com/en-us/deployedge/microsoft-edge-policies#block-access-to-a-list-of-urls
Hope above information can be helpful.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
@JChildsJCMH,Hope things going well.
May I know whether the above information is helpful? If there is any update, feel free to let me know.
@JChildsJCMH,Hope you have a nice day.
May I know the status from your side? If you need any assistance, feel free to contact me.
@JChildsJCMH, Hope you have a nice day.
May I know the status from your side? If you need any assistance, feel free to contact me.
This does not work as expected. Have followed the instructions, however we can still get to other sites which we do not want.
@ZhoumingDuan-MSFT Any other policy or settings you would suggest we try?
@JChildsJCMH,Thanks for your update.
To clarify this issue, please do some checks below.
1.Check the policy deploy status in Intune portal.
2.Check Intune Diagnostic log.
https://learn.microsoft.com/en-us/mem/intune/apps/app-configuration-policies-overview If there is any update, feel free to let me know.