With this new feature, we can target multiple apps at once. Another major benefit is that when Microsoft adds another app to the Office 365 suite, it is automatically controlled by Conditional Access which is unfortunately currently not the case.
Currently the following Office 365 applications are included in the Office 365 (preview) client;
- Microsoft Exchange Online Protection
- Microsoft Flow
- Microsoft Forms
- Microsoft Office 365 Portal (including admin.microsoft.com)
- Microsoft Teams
- Microsoft Teams Services
- Microsoft To-Do WebApp
- Office 365 Exchange Online
- Office 365 Search Service
- Office 365 SharePoint Online
- Office 365 Yammer
- Office Delve
- Office Hive
- Office Online
- Skype for Business Online
- Workplace Analytics
So, the advantages that we can find are:
- Less Conditional Access rules needed to control access Office 365 services.
- New Office 365 services are automatically controlled by Conditional Access
- Portal access controlled: A scenario to test this could be to only allow access to the Office 365 apps from compliant devices. We will see that access to the Office Portal, where a lot of meta data is show is not allowed anymore from a non-managed or non-complaint device.
- But also adding an Office 365 account an Office 365 ProPlus installation on a non-managed device can be blocked.