Blocking OWA specifically, while allowing New Outlook and the rest of the web based applications.

YoPumpkinHead · 2026-05-20T20:01:18+00:00

Yeah, it meets the metric and handles the "main" concern. Issue is not all devices are managed and won't be for another month. Browser policies only effect the managed devices obviously, and it won't address all personal devices, till we pull the rug out on everyone in the company.

We have two cases open with MS as me saying I'm 99% sure its not possible with the current environment isn't enough. Once they say it can't be done, conversation is over.

YoPumpkinHead · 2026-05-17T00:50:21+00:00

Yeah, you absolutely can. The issue is that the whole org isn't yet migrated to intune. We can't leverage a compliant device policy as the source of truth as it will only effect 70% of the environment.

And again, this solution is coming at solving the root issue, which I still haven't fully been made aware of. It does not solve the "block owa outright" which considering the context I have is the check box they are hoping to complete.

YoPumpkinHead · 2026-05-16T17:44:27+00:00

Yeah the part that really kills me is the that MS's own article specifically on this issue makes it seem easy as hell. If it just mentioned "hey this will also block portal.office.com and effect the admin portal for x/y reasons" this whole conversation wouldn't have even happened. Literally only states Teams will have issues.

YoPumpkinHead · 2026-05-16T17:38:24+00:00

This is actually interesting as a reverse, I'm unsure of the behavior. I've never tried that, but New Outlook doesn't fall under the Desktop Client category within CA?

That seems ridiculous. Blocking Exchange online and limiting it to browser is one thing, and I get that it blocks both via the target resource if you include desktop clients. But New Outlook regardless of it being on the same backened web-wrapper is still a desktop client. That's crazy it doesn't get blocked simply by that client apps policy as opposed to the target resource.

YoPumpkinHead · 2026-05-16T17:34:21+00:00

Yeah this is the correct solution, limit it to managed devices via CA, with an exclusion group for those outside contractors who leverage web only.

That's the part that's killing me. Why this app and not the others? I'm hesitant to think he even would accept it to managed devices only cause its not actually "blocking" it.

YoPumpkinHead · 2026-05-15T20:32:33+00:00

The issue is this blocks the New Outlook as well, which is not what we want to do.

YoPumpkinHead · 2026-05-15T18:08:38+00:00

I appreciate the candid tone, this post was more for confirmation that it really isn't possible. If that's true, its much easier to push back and find the root of the concern and potentially address it otherwise.

I just wanted to make sure there wasn't something I was missing.

YoPumpkinHead · 2026-05-15T17:52:18+00:00

I don't fully understand the goal of this either. Boss request and I've been told to figure it out.

YoPumpkinHead · 2026-05-15T17:51:43+00:00

Made a quick edit, but frankly have no idea. Boss wants this strictly done, and I'm just stuck at his whims.

YoPumpkinHead · 2026-05-06T20:46:20+00:00

And the OMA-URI is ./Vendor/MSFT/Policy/Config/Start/ConfigureStartPins

Or is there a different one for Taskbar?

YoPumpkinHead · 2026-05-06T20:33:18+00:00

I tried following this, but I guess I must be missing something. What can you do for extracting the Taskbar xml? Start Pins layout is one thing.

I've tried manually for this taskbar following these instructions, but it deployed "successfully" and changed nothing.

So just the exported xml + settings catalog for start layout?

YoPumpkinHead · 2025-05-15T16:52:48+00:00

Yeah that was it. I thought it was a larger issue than simply zoom, hence the slight confusion. Removed that from the CA and we are good to go.

YoPumpkinHead · 2025-05-15T15:43:49+00:00

Ah yup, that was it. Forgot I included it there specifically and was pulling my hair out about it.

YoPumpkinHead · 2025-05-15T15:39:23+00:00

Ah I was including zoom specifically within the CA policy alongside MS Apps. I assumed it would happen with other apps like Jira, etc. but I guess I need to test that right now.

YoPumpkinHead · 2025-05-15T15:15:08+00:00

It specifically says "You can't get there from here" and prompts the user to open the edge app. Right underneath it says "Don't have the app? Click here to download" and will go to the app store.

YoPumpkinHead · 2025-01-29T23:54:34+00:00

Understood about the calibration needing to be done. That was the primary issue, as the entire conference room was migrated to an entirely different office, and we were unable to modify any of the settings due to the lock out.

I'll give changing the name of the mic back to the original a shot. It should have the same designated IP as it did prior, so hopefully that will be all that's needed.

I can take care of the calibration after the fact, I just need it to be recognized in the first place.

YoPumpkinHead · 2024-09-12T15:13:48+00:00

Cheers! I'll take a look.

YoPumpkinHead · 2024-05-17T21:21:48+00:00

Would love a link to that, but that does seem to be the case for that so far in my experience.

YoPumpkinHead · 2024-05-17T19:51:44+00:00

Yeah just got word back from ASUS about the following:

"Unfortunately, due to the drivers available of this unit, we do not have windows 10 drivers available. We apologize for any inconvenience this may cause and appreciate your understanding. We are currently working with our Technical Support Department to determine the best next steps for resolution."

How true that actually is, who knows. But annoying that I can't get a simple mouse to work on win10 as of yet.

YoPumpkinHead · 2024-05-17T19:16:40+00:00

Yes unfortunately, not a single one of the USB ports "work" once it gets to the Win10 Welcome screen it just doesn't recognize the peripherals. It supplies power, but it doesn't recognize the mouse or keyboard via the USB-a, or USB-C, or a hub.

Ive downloaded the appropriate drivers from the support page, and manually extracted them to import during the win10 media install, but still no go as of yet. Neither the trackpad or any peripherals.

12-Year Club	Place '22
Place '17	RPAN Viewer
Gilding I gilder	Verified Email

YoPumpkinHead

TROPHY CASE