Forum Discussion

StuartK73's avatar
StuartK73
Iron Contributor
Nov 19, 2019

Custom OS Error on AE Work Profile

Hi All

 

Hope you are all well.

 

Anyway, a strange one here.

 

Trying to enroll an Android 7 Samsung device via Android Enterprise Work Profile and getting an error saying:

 

Couldn't add your device. To get your device managed, you'll need to accept all the system permissions requests

and

Cannot create Work Profile. The security policy prevents the creation of a work profile because a custom OS has been installed on the device.

 

Any ideas?

 

 

 

  • DiWoRhB's avatar
    DiWoRhB
    Copper Contributor

    I had same problem with Enterprise Enrollment on Samsung Tab S5e. The solution was to upgrade the device to latest Firmware. I had to flash with Odin-Tool. After that it worked like a charm.   

  • StuartK73 was that device enrolled before? We have seen such a message when enrolling a device not with work profile, but as fully managed devices. We found out that after removing the account from Intune and AAD it solved the issue (as it was not a new device).

    • J2_D2's avatar
      J2_D2
      Copper Contributor

      PKlapwijk , when you say you removed the account from AAD, was it the device you removed from the user's profile? 

      • GandalfDonGato J2_D2 In both Intune and AAD a device account was present, after removing both our issue was solved.
        The device could be found in AAD via device or from the User properties.

  • eglockling's avatar
    eglockling
    Steel Contributor

    It sounds like the device has been rooted. Do you have a compliance policy in place that restricts this? Device Health > Rooted devices > Block

    • StuartK73's avatar
      StuartK73
      Iron Contributor
      Yes I do, but this device is not rooted, apparently.

      Would anything else cause this?

      Regards

Resources