Archive: Intune announces preview of support for Android corporate-owned, fully managed devices

Lots of good info here, I was struggling all day with policies being assigned to devices via dynamic groups and the whole pin issue, having other issues now though...

1: I've got some Kyocera phones on Android 9 that say they are encrypted, but Intune says they aren't, and the app never clears me as compliant either, despite syncing over and over. Always says it needs encrypted and a password despite the policies being proper. At enrollment it kept me in a "Encrypt your device now" loop on the initial setup until I "setup" a pin at startup feature. Weird thing was even though I set the pin at startup to ON, it didn't stick, but it did let me through the rest of the setup and I was pumped because I thought it was working. Even when the phones are factory wiped they say encrypted and there's no way to decrypt them and use the Intune workflow to do it.

2: Is there some magical step that needs to be done to allow Edge to block certain URLs? I've created the app policies and assigned it to the group, and made sure I selected Edge for Android as the targeted app (targeted the Managed Browser as well). Basically the client wants to keep the users from getting to these website even from the browser. So I've disabled the Chrome browser completely and thought I configured this correctly, but no dice. Neither Edge nor the MB work. Really getting annoyed with this. I thought maybe the Apple supervised model was obnoxious, but Android fully manage is quickly becoming the bane of my existence.