Block all web sites, allow a few URLs

Hello,

We are trialing this endpoint system.  With our current platform I can set a deny all, but allow just Office 365 URL's to allow outlook/webmail only.  Is this possible?  I don't really see any options to set that up?