This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 39%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ET%3C/text%3E%3C/svg%3E)
Hello,
I have a question about Intune in Microsoft 365. I would like to use Google services, such as Google Meets, via the company portal. However, I would like to set up the restriction on the company devices that you can only log in to these Google services with an email address from a specific domain (e.g. @keyman .com).
How can I do this?
Thank you for your help.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 30%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
@TobiT22 , Thanks for posting in our Q&A.
After researching, I didn't find the function to restrict on logging into Google service with specific domain in Intune. This is because the Android MDM haven't open such API yet. You can feedback there to see if it can be added in the future.
https://developer.android.com/work/managed-configurations
Meanwhile, you can also contact Google service support to see if there's any restriction can be set to accomplish it.
On Intune side, currently, we have the following settings. Maybe we can use it as a workaround:
--On Personally owned devices with a work profile, there's an option named "Add and remove accounts", when it sets as Block, it will prevent users from manually adding or removing accounts in the work profile.
--On Fully managed, dedicated, and corporate-owned work profile devices, there's an option named "Add new users", when it sets block, it will prevent users from adding new users.
--On Fully managed and dedicated devices, there's an option named "Personal Google Accounts", when it sets to Block, it prevents users from adding their personal Google account to the device.
Here is the link with more details for the reference:
https://learn.microsoft.com/en-us/mem/intune/configuration/device-restrictions-android-for-work#users-and-accounts
Hope the above information can help.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.