Atlassian currently provides Mobile Application Management as described on Mobile App Management for Atlassian mobile apps. The current recommendation is to combine this with IP Allowlist to ensure instance users comply with secure device + authentication strategies by using only Mobile Apps, and not mobile browsers to navigate.

However, the current MAM implementation does not support controlling mobile browsers, and admins need to rely on MDMs or similar to provide that enhanced control. 

Suggestion

Implement Atlassian MAM native controls that allow admins to manage mobile browser sessions, similar to what is done to mobile apps.

Current Workarounds

Although there is no official workaround, adopting these steps may prove fruitful to avoid that entry point to instance users: 

• Ensure that Android and iOS devices can only connect to "Untrusted" WiFi Networks.
• For all other corporate devices, connect to a "Trusted" WiFi network.
• Then, in the IP Allowlists, include just the "Trusted" WiFi network.
• Thus, Android and iOS device web browsers can't access the website.
• Now, in the Mobile App policy, enable the "Allow access from any IP address" setting. This will allow only Mobile Apps to access content

Please notice this requires BYOD management.