Nice to see you back again 😊

Alex, thank you for making this episode! And Good Luck with an upcoming Marathon !!!

Wow this video is gold, i wish you could make a more thorough one with demos

I love your work mate! Keep up the amazing work.

how can I exclude Azuread joined devices from conditional access? or any method to identify personal and company devices?

Can i setup step 4 without a e5 license?

Would you still do all this if there are no company provided devices and only BYOD?

Hello Alex! Why wouldnt we want users to have their personal windows device enrolled/managed by Intune if they are going to be accessing corporate data?

Does this work if you exclude guest users from the policies? We work with several external vendors and they need access to some but not all cloud apps.

Thank you for your video. How do you wipe company data when the phone is lost or stolen?

What about a wider range of products? An entire internal intranet is normally what people are connecting to for work. Many different apps than just Microsoft 365. Can you get even more granular than this?

Great video. I’ve successfully limited access to O365 through browser and successfully blocked downloads following your advice. Cut/Copy/Paste still works from the browser - how do I block that too? Thanks!

FANTASTIC video. Thank you very much!

Great Video! Thanks for making it. Scenario- BYOD, Business Premium- want to allow users to use the desktop applications, but not save the data locally. Can that be built? Seems like it can with some modifications to the browser example you used. Thanks!

This should also work for Android devices, right? For restricting mobile devices to use corporate O365 application, it should be done via conditional access? Thanks! 👌

I guess Im confused too, you first blocked personal owned devices from being enrolled into Intune, but then you created conditional access/compliance polices and BYOD query rules for personal owned devices. ? Am I missing something?

This vid sounds great, however the browser versions of word/excel do not let you encrypt documents with a password. Anyway to bypass that?

Thank you, Alex! Amazing video! I followed your tutorial and it worked. However, I have an issue viewing PDF files in Outlook Web. When you click a PDF attachment, it automatically downloads it (blocked). Can you suggest any solution for this? Thanks a lot!

Alex, would your block downloads policy also prevent a person from syncing data on a SharePoint site to their computer? I'm trying to prevent that from happening with consultants on unmanaged devices. Thank you for this video.

Maybe it's a silly question. You disabled enrolment of personal devices to Intune. What is the point of having a conditional access policy that excludes personal devices? Since you disabled personal devices enrolment, you should not have any. Am I missing something?

I see that downloads of O365 documents on a web browser of an unmanaged device are blocked, this is good! But, pdf documents are allowed to be downloaded from the web browser outlook of an unmanaged macOS laptop. @Alex, is there a general restriction on web Outlook downloads that could be enforced on unmanaged computers?

Great video!

Good Video

Thanks