Feb 10 2022 02:03 AM
Feb 10 2022 02:03 AM
I am trying to onboard BYOD mobile devices(Android/iPhone) using intune's MAM(Mobile Application Management) without enrollment deployment option but failing for iPhone devices.
Andoid devices are working fine and can able to sign-in to Microsoft Apps like oulook, teams, OneDrive etc.
Error Message: App Access Blocked: To Access your data associated with Account Email address removed, your Organization requires confirmation that you are clocked in. We are unable to verify this. Please try again later or Contact your Admin.
Feb 10 2022 02:09 AM
Feb 10 2022 02:54 AM
Feb 10 2022 09:16 PM
Please let me know if you have any update on this issue.
Feb 11 2022 04:39 AM
Feb 11 2022 05:09 PM
Feb 11 2022 06:29 PM
I have also tried removing/readding these accounts from the apps, reinstalling apps, etc. I forgot to mention that occasionally it will just work when when you open the apps but then blocks access shortly after.
My next step is to remove assignment of the MAM policies but these have been deployed and working correctly for a little while so I'm not sure what's changed. I this must to be a bug? I have set these same policies up on quite a few other tenants and never seen these messages before. As far as I can tell, there's no mention of CA or MAM requiring being clocked-in in the docs.
Feb 12 2022 12:36 AM - edited Feb 12 2022 01:38 AM
Thats indeed very odd... as stated before it looks very much like app protection policies applying.. But (until now?) it never mentioned the "clocked" part... did you already opened a support ticket ?
Could you let us know if it fixes the issue when you decide to disable/remove the mam policies?
I know there is something wrong with app protection and teams .. maybe they are trying to fix that... and creating a new issue?
Feb 13 2022 01:04 PM
Feb 13 2022 08:34 PM
Yes, I have also opened a support case(29509939). As per latest update from support team, They are still testing this issue in their lab envirnment.
Please let me kow if you need any further detail from my end.
Feb 14 2022 03:30 AM
When I am checking the App protection status logs(Under Troubleshooting + support) during login process into iOS(outlook app), It's showing checked-in successfully.
But issue remains the same, outlook app access blocked with same error message.
Error message: App Access Blocked: To Access your data associated with Account Email address removed, your Organization requires confirmation that you are clocked in. We are unable to verify this. Please try again later or Contact your Admin.
Attaching screenshot for your reference.
Feb 14 2022 03:37 AM
Feb 14 2022 03:50 AM
Feb 15 2022 09:23 AM
Feb 15 2022 09:24 AM
Feb 15 2022 10:55 PM
Feb 28 2022 12:45 AM
Last week, I started facing same issue for Android device as well. But Managed to fix it after modifying the Conditional Launch setting - 'SafetyNet device attestation' to WARN from Block Action.