Azure Configuration Profile for Screen Lock fails when domain user is signed into both a desktop and an iphone.

Karpel Administrator 0 Reputation points
2023-03-20T15:14:27.9966667+00:00

We have a client who we manage via Azure Intune. We push policies via configuration profiles and point them at endpoints rather than specific users.

One particular policy that we have will fail anytime a user is signed into an iphone with their domain profile. We set screen lock to 15, and this works for all users who are not signed into an iphone, AND will work for all system profiles on all devices. Screen lock defaults to 5 minutes, or reverts to 5 mins every so often (as if the iPhone is settings a screen lock policy)

Our policy is set to only affect Windows 10 and greater devices, so why is this policy recognizing that a user is logged into a phone and then returning a fail? I'm not sure how we can get around this. I'm open to ideas.

Here is our policy showing non-applicable (when it should apply to user's desktop)
User's image

Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
4,318 questions
Microsoft Configuration Manager
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,437 questions
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Simon Ren-MSFT 30,031 Reputation points Microsoft Vendor
    2023-03-21T08:25:49.49+00:00

    Hi,

    Thank you for posting in Microsoft Q&A forum.

    1,How do you configure the Screen Lock settings in your device configuration profile that shown not applicable and how do you deploy it to your device group and user group? Have you configured the mobile only policy, such as Screen timeout and User configurable screen timeout, that will not be applicable to Windows desktop? Refer to:

    Locked screen experience

    screen locker

    2,If you need further help, please share the screenshot of your device configuration profile settings, I will have a test in my environment.

    Thanks for your time. Have a nice day!

    Best regards,

    Simon

    If the response is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments
  2. Simon Ren-MSFT 30,031 Reputation points Microsoft Vendor
    2023-03-29T10:07:58.3966667+00:00

    Hi,

    Hope everything goes well. Do you need any further assistance about this issue? If yes, please feel free to let us know, we will do our best to help you.

    If the response is helpful, it's appreciated that you could click "Accept Answer" and upvote it, this will help other users to search for useful information more quickly.

    Thanks for your time.

    Best regards,

    Simon

    0 comments