troubleshooting Question

How can I block file downloads for non Corporate or unmanaged devices?

Avatar of Ron Shorts
Ron ShortsFlag for United States of America asked on
Microsoft 365* Conditional Access* Active Directory Federation Services (ADFS)AzureSecurity
7 Comments1 Solution41 ViewsLast Modified:
I'm trying to get to a state where I can apply conditional access to prevent downloads from One drive, Sharepoint, etc., from any unmanaged corporate device.

The setting I would want to enforce is to "Limit Access" in Sharepoint Online: Control access from unmanaged devices - SharePoint in Microsoft 365 | Microsoft Docs - or - set up a Session Policy in Cloud App security.
I currently don't have Azure Hybrid joined workstations, or have devices enrolled into Intune. I have another 3rd party that acts as an MDM. I also have SCCM agents on all of my workstations.

1st question: Is there a way to apply conditional access or other means with Microsoft native tools without enrolling devices into Intune and enabling Co-management to manage the workload since I have SCCM clients on my workstations?

2nd question: If I hybrid join my workstation fleet, would I need to also enroll them into Intune MDM? Then I would be evaluating them as Compliant or Non Compliant.

3rd question: If I hybrid join, MDM enroll into intune, since I don't have MEMCM integrated with SCCM to manage the workloads, would I be able to use the workload to tell if devices were Compliant or not?

Jian An Lim
Solutions Architect

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Top Expert 2016

The Distinguished Expert awards are presented to the top veteran and rookie experts to earn the most points in the top 50 topics.

Log in to continue reading
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform for $9.99/mo
View membership options
Unlock 1 Answer and 7 Comments.
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
See how we're fighting big data
The Value of Experts Exchange in My Daily IT Life

Experts Exchange (EE) has become my company's go-to resource to get answers. I've used EE to make decisions, solve problems and even save customers. OutagesIO has been a challenging project and... Keep reading >>


Owner of Outages.IO
Phoenix, Arizona, United States
Member Since 2016
Join a full scale community that combines the best parts of other tools into one platform.
Unlock 1 Answer and 7 Comments.
View membership options
“All of life is about relationships, and EE has made a virtual community a real community. It lifts everyone's boat.”
William Peck

Member since 2004