Device enrollment policies
Cloudflare for Teams allows you to establish which users in your organization can enroll new devices or revoke access to connected devices. To do that, you can create a device enrollment rule on the Teams dashboard.
Click Device Settings on the top-right corner.
In the rule builder, configure a rule to define who can enroll or revoke devices. In this example, only users with
cloudflare.comemail addresses who successfully authenticate during device enrollment through the WARP client will be able to enroll in the organization. This rule prevents outsider users from sending traffic through your account and will give your organization the ability to capture user profile logs and apply profile-specific rules.