Office 365 connectivity issues an error occurred when trying to join your device to your organisation workplace

  Introduction: If you want to allow corporate domain joined windows 7 computers (ONLY)to access  office 365 services and block personnel windows 7 devices ,you must implement Device based conditional access. Device based conditional access ensure that your users are accessing your resources from devices that meet your standards for security and compliance . Following…
How to protect Azure AD App proxy (AAP) applications on windows 10 using intune windows information protection (WIP) from DLP

  Microsoft Intune helps you create and deploy your enterprise data protection (WIP) policy, including letting you choose your protected apps, your WIP-protection level, and how to find enterprise data on the network. Windows Information Protection (WIP), helps to protect enterprise apps and data against accidental data leak on enterprise-owned devices and personal devices that…
Conditional Access to prompt MFA if user coming from untrusted location a.k.a exclude MFA from company intranet

Introduction: Multi-factor authentication (MFA) is a method of confirming a user's claimed identity in which a user is granted access only after successfully presenting 2 or more pieces of evidence (or factors) to an authentication mechanism. What is  Azure Multi-Factor Authentication ? Two-step verification is a method of authentication that requires more than one verification…
Restrict Azure App Proxy applications accessed via Intune Managed Browser

Introduction: Azure AD App proxy provide secure remote access to on-premises applications .Azure AD Application Proxy provides a simple, secure, and cost-effective remote access solution to all your on-premises applications .For more information about Azure AD proxy ,refer https://docs.microsoft.com/en-us/azure/active-directory/active-directory-application-proxy-get-started Using Azure Active Directory (Azure AD), you can restrict access to web sites on mobile devices…
Intune cannot access application (MAM) You can’t get there from here. It looks like you are trying to open this resource with app that hasn’t been approved by your IT department

Month ago, user reported issue that , user could not able to access Microsoft Planner application (MAM) from their mobile device. Users are able to access applications like outlook ,onedrive,Microsoft Teams,word,excel etc but not Microsoft Planner. Below is the error user get ,when they try to access planner from mobile device. You can’t get there…
How to restrict to access to o365 from unsupported OS like Ubuntu ,CentOS using Conditional Access

  If you are using o365 services ,you might hit requirement to block unsupported OS (Ubuntu,CentOS etc) accessing o365 resources . There are couple of ways that you can restrict unsupported using Azure Active Directory Conditional Access. The only devices that are supported at the moment are iOS,Android,Mac and Windows. You can control these supported…
Conditional Access to deny /block access to exchange online from windows and mac devices

In this blog post, we will see how to use conditional access to deny/block access to Office 365 Exchange Online (emails) from windows devices and mac devices . conditional access allow access to company data only for authenticated users from compliant devices (If you apply conditional access to list of users ,device must enroll before…