Client is asking to block Exchange/ O365 mail on Native mail app on devices. I built out the following two Conditional Access Policies:
Require approved client apps or app protection policy with mobile devices
https://video2.skills-academy.com/en-us/azure/active-directory/conditional-access/howto-policy-approved-app-or-app-protection#require-approved-client-apps-or-app-protection-policy-with-mobile-devices
Block Exchange ActiveSync on all devices:
https://video2.skills-academy.com/en-us/azure/active-directory/conditional-access/howto-policy-approved-app-or-app-protection#block-exchange-activesync-on-all-devices
On my test iPhone, I reboot the phone, launch Company Portal, policies apply and I try adding my tenant email and the policy works great and does not let me.
I then disable the policy, reboot the phone, launch Company Portal, let policies apply, and then successfully add my tenant email after signing in.
I then re-enable the policy, reboot the phone, launch Company Portal, let policies apply, but here is where the problem or my misunderstanding of what should happen lies - my Exchange mail remains active. I am able to send from this account on my iPhone and receive to this account as well.
What step am I missing to either block new email from coming or going from this account on my phone or ideally - how can I just have the exchange mail removed altogether automatically from the phone.
Thanks in advance.
Matt