MicrosoftWe use Conditional Access for forcing iOS/iPadOS devices to enroll in Company Portal using the "must be compliant" control. We use Apple DEP so it's easy to tell the device ownership.
We are struggling with not having a true BYOD solution using Conditional Access in this way. For users that have both corporate and personal devices, we require a corporate device to be enrolled in Company Portal. How can we NOT require this for BYOD? I was hoping this device filter would help.
This does not solve the problem of requiring "compliant" devices to access company resources. If a user has both a corporate and a BYOD iOS/iPadOS device, the BYOD device must also enroll into company portal to access company resources because of Conditional Access. Device Filters are also available in Conditional Access now (great!) < But > it doesn't include a filter for device ownership??
