Any policy can restrict users to access O365 only through the Outlook email client

Question

Any policy can restrict users to access O365 only through the Outlook email client

James Chan_110 450

Hi All,

Any policy can restrict users to access O365 only through the Outlook email client?

Thanks.

ZhoumingDuan-MSFT 17,165 Reputation points Microsoft External Staff

2024-08-27T05:55:38.35+00:00

@James Chan_110, Hope you have a good day.

If the answer is helpful, please click "Accept Answer" and kindly upvote it to help others with the same problem as soon as possible.

1 answer

Your answer

ZhoumingDuan-MSFT 17,165 Reputation points Microsoft External Staff

2024-08-27T05:55:38.35+00:00

@James Chan_110, Hope you have a good day.

If the answer is helpful, please click "Accept Answer" and kindly upvote it to help others with the same problem as soon as possible.

Answer 1

ZhoumingDuan-MSFT 17,165 Microsoft External Staff

@James Chan_110,Thanks for posting in Q&A.

For your issue, we can create a condition access policy and app protection policy to achieve your goal.

Here are the steps.

1.Create a condition access policy with the following settings.

In the Users session, select the user or user group you want to assign.
In the Target resources session, select Cloud apps, and Select Office 365.

User's image

In the Conditions session, select Client apps and select Browser and Mobile apps and desktop clients under Modern authentication clients.

User's image

In the Grant session, select Require app protection policy and set Enable policy On.

User's image

2.Creat an app protection policy and assign it to outlook.

https://learn.microsoft.com/en-us/mem/intune/apps/app-protection-policy-settings-android --Android

https://learn.microsoft.com/en-us/mem/intune/apps/app-protection-policy-settings-windows --Windows

https://learn.microsoft.com/en-us/mem/intune/apps/app-protection-policy-settings-ios --iOS

After that, only Outlook client can access O365.

Hope above information can help you.

If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

James Chan_110 450 Reputation points

2024-08-02T03:04:45.2+00:00

Is it also possible for BYOD windows devices?
and macOS BYOD devices?
ZhoumingDuan-MSFT 17,165 Reputation points Microsoft External Staff

2024-08-02T07:06:29.48+00:00

@James Chan_110,Thanks for your reply.

The above information is also available for both BYOD windows device and macOS BYOD devices, because when you create the condition access policy you assign it to user group which means whatever device the user signs in, it will always apply to condition access policy.
ZhoumingDuan-MSFT 17,165 Reputation points Microsoft External Staff

2024-08-06T06:37:43.6333333+00:00

@James Chan_110, Hope things going well.

May I know the above information is helpful for you? If there is any update, feel free to contact us.
ZhoumingDuan-MSFT 17,165 Reputation points Microsoft External Staff

2024-08-22T06:15:08.4766667+00:00

@James Chan_110, Hope things going well.

If the answer is helpful, please click "Accept Answer" and kindly upvote it to help others with the same problem as soon as possible.

Share via

Any policy can restrict users to access O365 only through the Outlook email client

1 answer

Your answer