Resolved - Conditional access unexpectedly blocking macOS 10.15.4 native mail client/other apps

werneryue1004 - I've asked around and based on limited information we're not sure what the cause could be. Please open a support case with Microsoft Support so they can investigate further.

Thanks Intune_Support_Team , I hope the team can provide more details and advise about how we can fix the issue asap.   There had MacOS Mail issue with Office 365 Exchange from 10.15.4, sadly in original issue is fixed in 10.15.5, but the mentioned new issue is happened.

On Apple side they said MS updated something on Office 365, what they said is "a security settings in o365 that blocks it's content to be shown in the mac mail server. And the same reason that affects the other old emails on the local folders because there's exchange emails on the same folder."

Our client had a local Mailbox (Folder) created in MacOS Mail very long time ago, she was using NetSol email system with POP connection before.  Few months ago we helped to migrate to Office 365.  The local Mailbox (Folder) used to keep the emails which from NetSol and also Office365. Not sure how it can define it is email from exchange but the issue start to appear after 10.15.4 MacOS update.   It will be nice if someone can let us know which security setting has been updated on Office 365 during Apple release 10.15.4 and 10.15.5 update, then we can try to enable/disable for testing.

Hi werneryue1004, tagging our Exchange guru Ross Smith IV for additional insight.

Hi Support,

After upgrading my client's MacBook from 10.15.4 to 10.15.5, the "Require Exchange password" pop up on MacOS Mail seems gone.

However there have another issue, that when the client moves the exchange email from her Exchange Inbox in MacOS Mail to the folder in Mail under "On My Mac", the email contents are not displaying, even double click to open.   We have discussed with Apple Support, what the senior support have mentioned is there has a new security setting on Office 365 side, which causing content to be blocked for showing in the mac. And the same reason that affects the other old emails on the local folders because there's exchange emails on the same folder.

Can you please advise which setting we can change to fix it?

confirmed resolved for myself (and a Team Member) as well.

resolved for me.  thank you.

The last update of MACOS fixed it.

Thank you .

I can confirm that the issue was solved with the release of macOS 10.15.5. 

Exchange integration with Intune works as expected. 

Hi CV-NTT, thanks for the feedback and sorry that this is still occurring within your environment. If after upgrading to the latest macOS Beta 4 and are still experiencing Conditional Access failures in the Azure Active Directory blade under sign-ins, let's get you over to our support folks over in Azure for further investigation. You can raise a new support request via the Help + support blade in the Azure portal, or any of the methods here.

Intune_Support_Team - issue is still persisting with a user following upgrade to 10.15.5 Beta (19F83c), which according to the link https://developer.apple.com/news/releases/ should be release 4. Any suggestions?