Android 15 - CredentialProviderPolicy not surfaced by Intune

This is finally resolved!

Device configuration

Configure credential manager permissions for Android Enterprise devices

You can now control which applications act as system-level credential providers on managed Android Enterprise devices running Android 14 and higher. Credential providers are responsible for password autofill and passkey storage.

To configure credential manager permissions, go to Apps > Android > Configuration > Managed Devices and choose Android Enterprise as the platform type.

By default, Android blocks third-party credential providers on managed devices. This configuration setting lets you:

Allow specific apps (such as Microsoft Authenticator or a third-party password manager) to act as credential providers

Enable passkey-based sign-in across managed Android Enterprise devices

Maintain control over which credential sources are trusted on corporate devices

A known limitation is that Google Password Manager can't act as a credential provider on corporate-owned work profile or personally owned work profile devices. It is blocked on the end user's device. Use a different credential app as a workaround.

For more information, see Add app configuration policies for managed Android Enterprise devices.

Applies to:

Android fully managed devices (COBO)

Android dedicated devices (COSU)

Android corporate-owned devices with a work profile (COPE)

Android personally owned devices with a work profile (BYOD) using Android Management API (AM API)