Understanding Compliance Between Microsoft 365 Commercial, GCC, GCC-High and DoD Offerings

Hi RogueAgent, while it is true the Microsoft Authenticator app does not currently use FIPS validated crypto modules, it is rather a moot point for many of our customers that require it.  At the end of the day, standards and regulations such as NIST 800-53/171 will require you to enforce an MDM solution on your mobile devices.  Should you choose a device with encryption that is either FIPS validated or even certified (e.g. iOS & Knox), then you pick up the required encryption from MDM enforcement.  That said, we do have a roadmap for native encryption to use validated crypto.  There is also discussion on Intune enforcing the encryption for MDM and MAM configurations.