AAD CA Require approved app list schould include all Microsoft apps
The AAD CA require approved app list should include all Microsoft apps. StaffHub, Flow and so on. The idea to restrict iOS and Android to just a few is an incomplete solution. With App protection policies we can protect all Microsoft apps so this is the right combination when combined with CA. Please extend trusted app list to all MS app protection policy apps.
Mathieu Aït Azzouzene commented
Same for Require App Protection Policy, blocking OneDrive but not Teams is completely counterproductive.