This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(294.40000000000003, 16%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBP%3C/text%3E%3C/svg%3E)
Hi,
First to mention we are speaking iOS devices and App protection policies and app configuration policies.
Everything is working if device is managed (all are) and if user managed apps installed from company portal. Those apps are also / have app protection policy and configuration policy with “IntuneMAMUPN“ key.
Issue that I have is, that I have one device. Device is managed and compliant. User has installed Outlook, but not from company portal. He is receiving app protection policy for unmanaged devices. If I apply app configuration policy with “IntuneMAMUPN“. In diagnostic section I can see that policy is assign to user/device, but when I dig to config it is saying “not applicable”. Because of that user receive app protection policy for “device type” unmanaged devices. I would like that user receive app protection policy for managed devices.
The easy way, probably would be to told the user to install outlook from company portal. But I would like to find solution even if user does not installed application from company portal.
And yes, if I look application for effected device outlook is not listed as managed application.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 30%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
@Borut Puhar , From your description, it seems a managed and compliant device can't apply app configuration policy with error "not applicable". If there's any misunderstanding, please let us know.
Firstly, could you let us know the device enrollment type we configured for the app configuration policy? Did we choose Managed device? Selecting Managed apps as the Device Enrollment Type specifically refers to apps configured by Intune configuration policies on a device that is not enrolled in device management, whereas Managed devices applies to apps deployed through the MDM channel and thus are managed by Intune. We can see more details in the following link:
https://learn.microsoft.com/en-us/mem/intune/apps/app-configuration-policies-overview#apps-that-support-app-configuration
Hope it can help.
If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Hi Crystal-MSFT,
table…
App reporting -> Outlook -> Checked in -> Unmanaged
App reporting -> MS Teams-> Checked in -> Managed
Assignments -> Client Apps -> Outlook is not there, but MS Teams is
Assignments -> App protection policies -> Protection - Managed, AppProtection - unmanaged
Mobile Phone :
Ownership : Corporate
Compliance : Compliant
Discovered apps :
Outlook is there
MS Teams is there
Managed Apps : MS Teams is there
App protection policy -> Outlook : Unmanaged (but both managed & unmanaged policy are assign to user)
Would it work if I assign outlook to user and app configuration policy would applied?
App Configuration policy is configured -> Group (user assignment)
@Borut Puhar , Thanks for letting us know the detailed configuration. Based on my testing, when the enrollment type is set as Managed Apps, for enrolled device, the app configuration policy is not applied although the outlook is deployed via Intune.
Hope it can help.
@Borut Puhar , Hope everything is going well/ if there's still anything we can help, feel free to let us know.