Forum Discussion
App Protection Policy Intune iOS Restrict Cut Copy Paste but allow certain third party apps only
The restriction of cut copy and paste is chosen as Microsoft apps only. Even if we push the apps from Company portal as managed apps, even VPP apps, the App protection policy is not getting applied on those apps. Apps are like SAP, Concur, Salesforce, etc,. were used global and widely across many organisations and how are you overcoming these policy restriction by MS Intune on iOS Devices. We have to secure - so that no data should be moved out to any third party apps, also in the meanwhile, we have Business apps like above mentioned to get things done.
Tried methods and not working-
Sending the UPN as app configuration policy using the third party apps also.
- Added Custom bundle-id for those apps in the App protection policy.
- in App PP - under Data Protection - add apps to exempt - also tried with no results.
- In our existing policy we have chosen "selected apps mode" for app protection policy.
and all these apps were selected as Microsoft apps, and its working fine as expected.
The cut copy and paste will work only on those apps which we have chosen as selected apps.
Remaining all apps the cut copy and paste will be blocked. Now we have a scenario of business apps usage and we have deployed those via Company portal as iOS Store app, users downloaded and using it already. From app management, it shows as managed apps. Requirement here is to have cut, copy and paste from Outlook, Teams to those business apps.
The iOS device restriction policy fixed this.
Which is iOS > Device Restrictions Profile > Configuration settings > Allow copy/paste to be affected by managed open-in
This fixed the solution of copy and paste with the apps that are downloaded from the Company portal.
Since enrolled devices will take precedence with Device restriction more than app protection policy.
6 Replies
The iOS device restriction policy fixed this.
Which is iOS > Device Restrictions Profile > Configuration settings > Allow copy/paste to be affected by managed open-in
This fixed the solution of copy and paste with the apps that are downloaded from the Company portal.
Since enrolled devices will take precedence with Device restriction more than app protection policy.
The problem here with those business apps are from third parties. Like Salesforce, Concur, etc,.
Hi, If you want to allow copying and pasting from MS apps and third-party apps, do this.
1- First, we need to navigate to Apps and click App protection policies.
2- Click Create policy and select iOS/iPadOS in the drop-down menu.
3- As usual, name and describe your policy. The platform is pre-selected based on the drop-down
menu selection before. Then, click Next.
4- Here, we can select which apps to protect. If you want to protect selected apps, you need to
click the +Select apps or5- navigate to Restrict cut, copy, and paste between other apps and choose "Policy managed apps with paste in"
6- now you can choose cut and copy character limit for any app.
If you need more help, don't hesitate to reach out.
Hi Ankido
Thanks for your response, but here I want to copy and paste to an Non-Microsoft app.
in selected apps lists the app itself not available - so I cannot bring it under App protection policy.
Since that third party app is not into this Policy managed apps, we are unable to achieve this
OK, in this case you need to intergrated apps with Intune SDK to support protection policies.
Here what you need to do.Get started with the Microsoft Intune App SDK
