Block email access for unmanaged devices
You can prevent devices that are not enrolled with Sophos Mobile from accessing email.
Prerequisite: You’ve set up the standalone EAS proxy in PowerShell mode.
In these instructions, Exchange refers to either your on-premise Exchange server or to your Exchange Online plan included in Office 365.
You can configure Exchange to quarantine unmanaged devices. Users will receive an email telling them to enroll the device with Sophos Mobile. After the device is enrolled, it’s automatically removed from quarantine.
Also, enrolled devices are quarantined if the EAS proxy doesn’t know their compliance status. This might happen when a device hasn’t synchronized with Sophos Mobile for too long or when the EAS proxy can’t communicate with the Sophos Mobile server.
To block email access for unmanaged devices:
For more information on controlling email access in general, see the Microsoft document Controlling Exchange ActiveSync device access using the Allow/Block/Quarantine list.