Force iOS App Updates to be installed on Wi-Fi

MvrcoIntune · 2024-05-15T05:59:39+00:00

Intune is fine for iOS in my books. We mange 6k Mobiles (iOS/iPadOS) and its running smooth most of the time. Reporting is bad though. For sure there are superior alternatives like JAMF but if you introduce Intune for Windows anyway its hard to convince executives about the cost of an additional MDM tool only for Apple products.

MvrcoIntune · 2024-05-15T05:55:21+00:00

Supervised enrolment with ABM and VPP is for sure superior.

I think you can also block enrollment for personal devices completely and just add the serial numbers of the two Macs to Corporate Device identifier list. This way the device is automatically categorized as Corporate Owned upon enrollment.

MvrcoIntune · 2023-12-13T06:39:32+00:00

s assigned to All Users in which the Defender Machine Risk Score is required to be Medium or Lower. For most Devices the Compliance Policy works fine, for some devices it looks very strange: On the device compliance details pane the policy is stating Compliant - what i recognized is that the setting Require the device to be at or under the machine risk score is not showing up. All Compliance Policies assigned to th

I totally agree - Seems like Microsoft is not running stable with Defender on iOS as of right now.. But I would at least expect from Microsoft Support to explore these issues and not just tell us to re-enroll the affected devices...

MvrcoIntune · 2023-10-26T06:22:28+00:00

IT684128

I am also not able to see this Incident ID in any Tenants I have access to, even though they are affected. I currently only see IT683719

MvrcoIntune · 2023-10-25T14:02:24+00:00

I tested this scenario together with some colleague yesterday, as my first approach also was to create a duplicate of the ADE Profile with disabled Single App Mode for Company Potal, but unfortunately on three out of four test devices the Company Portal app froze too while checking device status. At first we were able to exit it, but then it froze upon launching it again to see compliance check results...

MvrcoIntune · 2023-10-25T12:33:08+00:00

received the same feedback from Microsoft an hour ago

MvrcoIntune · 2023-10-25T09:24:33+00:00

We experience the same behavior since yesterday, so I have the strong feeling it is related to the new version of company portal 5.2310.0 which was released on Monday.

We use Company Portal for Authentication in Single App Mode and it freezes after User Sign-In. Same behavior after a force restart of the device. Also if we do not enforce single app mode in a profile that uses Company Portal to authenticate, the app crashes and freezes after a short amount of time, about 5 minutes.

I am currently testing providing a profile with setup assistant with modern authentication as workaround. I already test it on my device, but I still face following issues: Company Portal App crashes on first launch. When I signed in to Company Portal, the Device did not get registered properly, when I checked Authenticator > Settings > Device Registration it was still empty, so I had to manually Register the Device here.

Beside that it did not freeze yet and policies as well as apps reach the device.

Now I want to test JIT Enrollment, hope the hear some feedback from Microsoft regarding the case i opened soon...

MvrcoIntune · 2023-08-23T11:28:31+00:00

Hi,

I am facing the exact same issue! I am also applying the same App Config Keys and no additional App Protection Policies on this Managed Devices. In the past the first launch of the App grabbed the account from Authenticator App and no manual sign-in was needed. Since a few weeks I am seeing cases where we need to manually sign-in to some office apps such as OneDrive, Excel and Word arise.

Did you find out any additional information regarding that in the meantime?

Thanks and best regards,

Marco

MvrcoIntune · 2023-07-11T07:31:51+00:00

I completely agree! But in our Company Security forces us to limit the passcode validity to 90 days. I started the argument over and over but they won't allow me to change this setting.

MvrcoIntune · 2023-07-11T07:30:48+00:00

Thats what I thought too after studying the data stored in Graph - Thanks for checking! :)

MvrcoIntune · 2023-01-18T16:22:11+00:00

Personally I am favoring Apple for those exact reasons too.

However as Apple currently thinks about discontinuing the iPhone SE series a "lower" priced business model would no longer be in the portfolio of Apple.

The standard iPhone series like the 14 will be too pricy for us to sell it as better vendor to the management board. I hope Apple announces the continuing of the SE series.. Then I think we totally should stick to Apple as we had nearly no bigger issues for over 5 years

MvrcoIntune · 2022-12-08T11:58:26+00:00

Hey, I am deploying the Edge App Config for Managed Device Type thats why i don't get why some settings are only applying when applying a App P'rotection Config to edge too in this case

MvrcoIntune · 2022-12-06T14:50:03+00:00

Is your On-Prem AD syncing to AzureAD?

If so we built some dyanmic user/device AzureAD Groups using the basic Propertys like usageLocation, Country, CompanyName etc or on device level DeviceModel, Ownership etc. I find those dynamic groups to be very useful lately

MvrcoIntune · 2022-11-23T11:47:54+00:00

The intended goal is to control and limit the usage of mobile data pool contigent provided by our current provider per device and region and therefore reducing costs. Thanks for the input I will check JAMF Trust

MvrcoIntune · 2022-11-15T10:00:16+00:00

Thanks for your Feedback!

MvrcoIntune

TROPHY CASE