Forum Discussion
StuartK73
Nov 19, 2019Iron Contributor
Custom OS Error on AE Work Profile
Hi All
Hope you are all well.
Anyway, a strange one here.
Trying to enroll an Android 7 Samsung device via Android Enterprise Work Profile and getting an error saying:
Couldn't add your device. To get your device managed, you'll need to accept all the system permissions requests
and
Cannot create Work Profile. The security policy prevents the creation of a work profile because a custom OS has been installed on the device.
Any ideas?
- DiWoRhBCopper Contributor
I had same problem with Enterprise Enrollment on Samsung Tab S5e. The solution was to upgrade the device to latest Firmware. I had to flash with Odin-Tool. After that it worked like a charm.
StuartK73 was that device enrolled before? We have seen such a message when enrolling a device not with work profile, but as fully managed devices. We found out that after removing the account from Intune and AAD it solved the issue (as it was not a new device).
- GandalfDonGatoCopper Contributor
PKlapwijk Can you provide an step by step of your Workaround ?
GandalfDonGato J2_D2 In both Intune and AAD a device account was present, after removing both our issue was solved.
The device could be found in AAD via device or from the User properties.
- eglocklingSteel Contributor
It sounds like the device has been rooted. Do you have a compliance policy in place that restricts this? Device Health > Rooted devices > Block
- StuartK73Iron ContributorYes I do, but this device is not rooted, apparently.
Would anything else cause this?
Regards- eglocklingSteel Contributor
StuartK73 A custom ROM being installed would also do it.