![]() ![]() Here’s a screenshot of a policy targeting browser access. Here’s how you do that:Ĭreate a conditional access policy to lock down browser access to a policy-protected browser such as Microsoft Edge using app-based conditional access. To configure this in Microsoft Intune, you need to apply application-based conditional access policy and an App Protection policy for Microsoft Edge on iOS and Android. Require approved mobile apps for security Here is a screenshot of a blocked access when using Safari on iOS. On first attempt, users will be prompted to install the Microsoft Authenticator on iOS or the Intune Company Portal on Android. Users attempting to use unmanaged browsers such as Safari and Chrome will be prompted to open Microsoft Edge instead. A similar protection can be applied to Office 365 services like Exchange Online and SharePoint Online, the Office portal, and access to on-premises (intranet) sites via the Azure AD Application Proxy. This allows you to secure access and prevent data leakage via unprotected browser applications. You can now enforce policy-managed Microsoft Edge as the approved mobile browser to access Azure AD-connected web apps, restricting the use of unprotected browsers like Safari or Chrome. Secure mobile browser access using Conditional Access and Microsoft Edge ![]() To enable this, users only need to set Microsoft Edge as their default browser in their Outlook app settings. Now, users protected with device-based conditional access can navigate to all links using Microsoft Edge from Outlook mobile, and access web resources without having to reauthenticate. If you previously used Intune Managed Browser with Azure AD Conditional Access, this new Microsoft Edge functionality will be familiar to you. You will be prompted to register your device, and that's it you will receive single sign-on access to all applications. Sign-in and navigate to any of your Azure AD-connected applications that support single sign-on.If you don’t have Microsoft Authenticator installed yet, you will be prompted to download it. Install the latest version of Microsoft Edge.Let’s see how users can get this better sign-in experience on iOS devices: ![]() They simply need to have the Microsoft Authenticator app on iOS or the Intune Company Portal app on Android. This means users of Microsoft Edge will be able to access Azure AD-connected web apps without having to re-enter their credentials. Microsoft Edge on iOS and Android can now take advantage of single sign-on (SSO) to all web apps (SaaS and on-premises) that are Azure AD-connected. Single Sign-on to Azure AD-connected apps in Microsoft Edge Let's dive a little deeper to explore these new features
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |