Not sure if I understand the issue entirely but sounds like a MAM scenario.
conditional acess& App protection policy not blocking app acces on android
I am deploying office apps including teams to both BYOD and corporate iOS & Android. we have a conditional access policy policy targetted to iOS and Android platform, for all licensed users to use all cloud apps,, grant control is permitted when all the below are in place
- require device to be compliant
- required approved client app
- require App protection policy
while testing it was observed that one user with E5 license was able to install the teams application from play store and was able to configure without issue.
we have one app configuration policy created for managed apps for bboth android and iOS apps and it is targetted to all users. Also we have one each app protection policy configured for each device platform.
any suggestion or resolution on why the user was able to acess the app on their device without intune enrollment.
2 answers
Sort by: Most helpful
-
-
Crystal-MSFT 51,976 Reputation points Microsoft Vendor
2022-06-27T03:42:10.1+00:00 @svjs-0437 , For the Conditional access policy, please check if we select "Require all the selected controls" under Grant. If not, please select this one and see if it works.
However, if the issue still persists, Please collect the following information to check:
!. Get screen shots of the configuration of the conditional access.
2. Check the sign in log to see if the Conditional access policy is applied.Hope it can help.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.