Allow or Block All Unmanaged Add-ins in OneNote using Intune Policy

The article explains how to use Microsoft Intune to manage OneNote add-ins by enabling a policy that blocks all unmanaged add-ins. This is a security-focused measure designed to prevent users from installing potentially harmful or unauthorized extensions.

When the policy is enabled, only add-ins explicitly listed as “always enabled” or “configurable by the user” are allowed to run. This ensures a controlled environment where IT administrators can maintain oversight and reduce the risk of malware or data leaks. If the policy is disabled or left unconfigured, users can freely install any add-ins, which increases the risk of security vulnerabilities.

The article also provides a step-by-step guide for deploying this policy via Intune. It walks through creating a new configuration profile, selecting the appropriate platform and settings, assigning scope tags and user groups, and finalizing the deployment.

It emphasizes the importance of monitoring the policy status and verifying its application on client devices. Additionally, it covers how to remove or delete the policy if needed.

[New Post] 🎆Allow or Block All Unmanaged Add-ins in OneNote using Intune Policy

➡Unmanaged Add-ins in OneNote

➡Controls which Add-ins are Allowed in Applications

➡Enhance App Functionality and Productivity

➡Not All Add-ins are Safe

➡Why is this Policy Important for Security?

➡Monitoring Status

➡Client-Side Verification

🔐 Purpose of the Policy

• Security Focus: Blocks all unmanaged add-ins in OneNote to prevent potential malware or data leaks.
• Controlled Environment: Only approved add-ins (listed as “always enabled” or “configurable by user”) are allowed.

⚙️ Policy Behavior

• Enabled: Blocks all add-ins except those explicitly allowed.
• Disabled/Unconfigured: Users can install any add-ins, increasing security risks.

🛠️ Deployment Steps in Intune

• Create Policy: Go to Intune Admin Center → Devices → Configuration → Create Policy.
• Platform & Profile: Choose “Windows 10 and later” and “Settings Catalog.”
• Configuration Settings: Use the Settings Picker to select OneNote → Block Unmanaged Add-ins.
• Enable/Disable Toggle: Set the policy status.
• Scope Tags (Optional): Assign tags for admin group filtering.
• Assignments: Add user/device groups to apply the policy.
• Review + Create: Finalize and deploy the policy.

📊 Monitoring & Verification

• Monitoring Status: Check if the policy succeeded via Intune Portal.
• Client-Side Verification: Confirms policy application on user devices.

🧹 Policy Maintenance

• Remove Assigned Groups: Edit the Assignments tab in Intune.
• Delete Policy: Use the 3-dot menu in the policy details page.

This is the new post published in HTMD Community AnoopCNair.com website and this is related to Allow or Block All Unmanaged Add-ins in OneNote using Intune Policy.

Read Full Article - https://www.anoopcnair.com/all-unmanaged-add-ins-in-onenote-using-intune/

#Intune #MSIntune #Windows #HTMDCommunity