Resolved - Support Tip: Occasionally occurring with iOS MAM and Office apps

Hi,

Is this issue still being worked on by Microsoft? We have a customer that has this issue. Unfortunately because of security reasons end-users do not know their passwords, and they are also not allowed to receive TAP-codes. When they get logged out of Office apps they have to physically come to the office to fix this. This of course is a bit silly for something that is a known error.

Hope it'll get fixed.

That sounds like when https://extremecarsimulatorapk.com/ glitches and resets your car mid-race—frustrating, but at least there's a workaround until they fix it!

Hi all,

Thank you for taking the time to read this article, and commenting with your feedback/questions.

We apologize for any comments we have missed replying to, though if the workaround hasn't worked for you, and you are continuing to experience this issue, can you reach out to us via DM?

Thanks!

Dutch2005nl  Sorry for late reply. Yes correct, Entra TAP works, sttill a work around with one less step than my previous cell number route and is much of a muchness. 

Has there been a resolution to this issue? I am getting Org Data with code 606. Is it possible related to an App Protection Policy?

Update: I resolved my issue with the fix listed above: In Intune>Apps>App selective wipe>for both Wipe requests and User-Level Wipe, the account was listed there. I just deleted the wipe requests and I'm sure all will be well. This one took longer than I'd like to admit. The User-Level Wipe fixed it.

We're also experiencing the same issue with our user's Outlook App on iOS device. 

We're also experiencing this issue with a user's Outlook and Power BI on their iPhones. Of course, neither of those apps have the Reset option in iOS Settings. 

Jason_Borejszo 

Can can properly get around the 1st MFA by using EntraID TAP (Temporal Access pass). This will allow end-user login.

If you have EntraID you can also allow web login to allow this TAP to be used to login the device 1st time.

As far as I know this is not possible if using Active Directory (AD) or Hybrid (were primary login, is still local AD.)

The only work around to this 1st login issue that I have found so far, is to add my cell phone number as the default number to the new user account and then login from the new user account via web browser at portal.office.com to do the text authentication and once the account has done its first handshake, then change the accounts default cell number back and reset the password before handing over the new account to the user. Then it allows authentication. Only a work around not a fix.

Hi Intune_Support_Team,

Considering this issue has presented since 2021 and is still creating problems with no resolution for what's going to be more than three years soon. Points to an obvious lack in software development management competence, testing and bug resolution before major version releases. The persistence of the underlying problem through now multiple device, OS and platform generations reflects poorly on Microsoft and the Intune/Azure development teams. Does it normally take years to fix a registered platform stability problem?

We are having the same issue on multiple IOS devices that our business keeps current for our sales teams. Who are across country and not able to simply pop in to head office for a support fix that still doesn't exist. This is very frustrating. I have noticed an increase in this error to more IOS devices on our network since the resent forced MFA policy enablement that is now placed on tenants with no option to disable it. This has additionally created issues for us in general user management, where after creating new user accounts, the users cant login, because of the forced MFA, 1st login is blocked due to no authenticated policy being available on the device.  So the first initial handshake doesn't complete and they don't get a chance to even use Authenticator.(???????)