M365 - Block installing of 3rd party apps

Jim Smith 21 Reputation points
2024-02-26T15:41:49.36+00:00

Good afternoon community I am trying to block the installing of non-Microsoft 3rd party add-ins from across our Endpoint footprint. We have blocked the Windows Store within the desktop apps for office. Using a Teams app permission policy have blocked the installing of non-MS apps. They appear as "request", which prevents the install. Would be nice to actually hide all but approved apps though if possible. The big one however is the adding of apps via office.com We can go through the list and block individual apps, but how do I do a blanket block off all non-MS apps?

Microsoft 365
Microsoft 365
Formerly Office 365, is a line of subscription services offered by Microsoft which adds to and includes the Microsoft Office product line.
4,685 questions
Office Management
Office Management
Office: A suite of Microsoft productivity software that supports common business tasks, including word processing, email, presentations, and data management and analysis.Management: The act or process of organizing, handling, directing or controlling something.
2,114 questions
0 comments No comments
{count} votes

Accepted answer
  1. Barry Evanz 235 Reputation points
    2024-02-29T15:35:33.2233333+00:00

    There's no one-click solution to block all non-Microsoft apps, but with a focused approach, you can closely achieve that goal. Diving into the Microsoft 365 admin center is your first move. Here, you can adjust settings that dictate which apps are allowed. Essentially, by setting up a whitelist of approved Microsoft apps, you're indirectly blocking all others. Creating a SharePoint app catalog can help manage this list, making it easier to oversee which apps are permitted. Further refining app permissions within the admin center lets you specify allowed apps more precisely. For deeper customization, PowerShell scripts offer granular control over app permissions, allowing you to tailor the environment to your security standards. Communication with your users about these changes is crucial to ensure smooth adoption. Also, staying updated with Microsoft's enhancements can provide new tools for managing app permissions. In situations where the built-in controls aren't enough, third-party security solutions may offer the detailed management you're looking for. By focusing on allowing only approved apps, you effectively safeguard your network while keeping the administration manageable. If you need more detailed guidance, Microsoft support and Microsoft 365 specialists are valuable resources.

    1 person found this answer helpful.
    0 comments No comments

0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.