How do I block the Internet on a subset of devices, except allowed URLs
I have a use case where I need to restrict specific devices from accessing the entire Internet, except for Azure and Intune services and specific SharePoint sites.
We have been able to accomplish almost everything we wanted to, the only thing we are struggling with is the blocking of all Internet URLs. We have managed to use Defender Security Centre and restricted access to SharePoint, we also use CA policies to restrict access to M365 applications.
We have tried to use Defender to restrict URLs, but this seems to be a little impossible, unless there is a way to specify wild card characters.
We have read that using the Windows Firewall is a possibility, but could it be done in an easier fashion?
Thanks for your help and guidance.