We have a custom app in MS Teams. But we do not want to enable this app to entire Organization. Currently we have setup a custom policy in Teams Admin Center, added the custom app to the Policy and updated the User Policies to the custom policy for the users who need access to the app.
Is there any possibility to restrict access to the custom app through Azure AD Conditional Access policies instead of creating a custom policy in Teams Admin Center? I have tried to search with the app-id of the custom app in Azure AD and couldn't find anything to setup a conditional access policy. The users list is dynamic and will gets updated frequently, is there is any way we can achieve this.
I do not want the user to add the app from Teams and they show a message saying -"you cant access the app ". If possible I would like to setup a conditional policy such that the app wont be visible in the Teams Apps Viewer even after the app is enabled in Organization policy.