I'm curious about the reasoning behind my company's policy where mobile devices, whether they're company-owned or personal (BYOD), are not allowed to add company email accounts to their native mail applications like iOS Mail or Samsung Mail. Instead, we are required to use the Outlook Mobile App from Microsoft. I'm not necessarily for or against this policy, but I really want to understand the benefits and rationale behind this decision.
5 Answers
The main reason for blocking native mail apps is data protection. When an employee leaves or if there's a security breach, it’s much easier to wipe company data from the Outlook app without affecting personal data. This helps prevent data exfiltration and keeps everything secure.
And let's not forget, the Outlook app is designed to isolate corporate accounts, allowing IT to wipe just the enterprise email without touching personal info.
Then there’s the issue of calendar invites. The native iOS Mail app has notoriously handled them poorly, leading to multiple copies of the same invite. This has been a huge source of frustration, especially for our executives.
I can relate! It's embarrassing when high-ups get flooded with duplicate invites—it reflects poorly on IT.
Ugh, and when responses don’t sync properly, it's a nightmare! At least with Outlook, we avoid those issues.
It’s also about support and consistency. Supporting a single app like Outlook is way easier than managing numerous mail apps, each with their quirks. Every time Microsoft updates their MFA rules, the Outlook app just works, while native apps can fail to authenticate properly.
True! The fewer apps you have to support, the better. It drastically reduces helpdesk calls and confusion among users.
Absolutely! We've had issues where our users faced countless problems because they were using native apps. It's just not worth the headache.
Finally, from a management perspective, limiting apps to Outlook simplifies onboarding and offboarding. If a user changes their password at work, Outlook prompts them to update, whereas with native apps, they may forget, leading to a support mess.
Exactly! It makes the process so much smoother when everyone’s using the same app. Plus, we keep corporate data safer.
Definitely! This also helps in preventing users from accessing sensitive data post-employment.
Blocking native mail apps also helps enforce email security policies. The native apps usually don’t support robust management options like DLP (Data Loss Prevention) which are vital for keeping corporate data secure. With Outlook, we can apply policies more effectively.
Yes! Without those protections, it becomes risky for the organization to manage sensitive data.
And if a device is lost or stolen, with the Outlook app, we can wipe it easily without worrying about losing personal data.
Exactly! Plus, with the Outlook app, you can limit actions like taking screenshots or copying text, which further reduces the risk of data leaks.