Bit of a long scenario:
Currently we only allow users to access O365 and Azure if the following is true:
User is approved for an IOS or Android device
You are connected on a trusted network
You are on a hybrid domain joined device.
Now we have some users that are using a partners laptop but it is not domain joined and not on a trusted network. How can we approve these devices without allowing the user to also register personal windows 10 devices?
I was think if there was a way that they could register the device and then we (the IT team) approve the device for use? Or if there is a way that I could take advantage of Cloud App security policies (since we are running EMS E5)
Any thoughts would be appreciated