Is there a way to disable admin remote mobile wipe capability in Exchange 2013?

I have a situation where someone does not want even an admin to be able to remotely wipe data from a non-company mobile phone. Is there a way in Exchange 2013 to be able to turn this remote admin feature off?

Thank you for any insight!
DDOsborneIT ManagerAsked:
Who is Participating?
 
David Johnson, CD, MVPOwnerCommented:
Don't enrol that device in MDM. My first impression was 'tough cookies' the company data belongs to the company and if you leave the company or lose your device, our security policy will enforce the wiping of company data from the device.
1
 
CESNetwork AdministratorCommented:
For users you can update the mailbox policy to restrict access to ActiveSync Features:

https://practical365.com/exchange-server/disable-user-management-mobile-devices-via-owa-mailbox-policy/

As far as administrators go, this is not possible.  Ideally, there is a BYOD policy in place (where users are aware that company intellectual property is on the mobile phone) and only very trusted individuals (admins) have the ability to perform the wipe of the phone.  If you don't trust someone to handle that responsibility properly that don't place them in that role
0
 
David Johnson, CD, MVPOwnerCommented:
answered
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.