cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Deploy app to compliant devices only

%3CLINGO-SUB%20id%3D%22lingo-sub-1590895%22%20slang%3D%22en-US%22%3EDeploy%20app%20to%20compliant%20devices%20only%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1590895%22%20slang%3D%22en-US%22%3E%3CP%3EI'm%20probably%20missing%20something%20obvious%2C%20but%20I%20was%20wondering%20how%20I%20could%20deploy%20an%20app%20or%20configuration%20profile%20and%20limit%20it%20to%20compliant%20devices.%26nbsp%3B%20Conditional%20access%20obviously%20isn't%20the%20solution%20as%20it's%20only%20for%20accessing%20cloud%20apps.%26nbsp%3B%20I%20guess%20a%20dynamic%20group%20wouldn't%20work%20either%20as%20it'd%20require%20Intune%20enrollment%20to%20get%20the%20compliance%20data.%26nbsp%3B%20Any%20ideas%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-1590895%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EIntune%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EMobile%20Device%20Management%20(MDM)%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1591961%22%20slang%3D%22en-US%22%3ERe%3A%20Deploy%20app%20to%20compliant%20devices%20only%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1591961%22%20slang%3D%22en-US%22%3EHi%20stromnessian%2C%3CBR%20%2F%3E%3CBR%20%2F%3EI%20thought%20Non-compliant%20devices%20will%20not%20receive%20apps%20or%20config%20policies%20from%20Intune%20anyways%2C%20do%20you%20see%20different%20experience%3F%3CBR%20%2F%3E%3CBR%20%2F%3E%3CBR%20%2F%3EMoe%3C%2FLINGO-BODY%3E
stromnessian
New Contributor

‎08-15-2020 01:55 PM

‎08-15-2020 01:55 PM

Deploy app to compliant devices only

I'm probably missing something obvious, but I was wondering how I could deploy an app or configuration profile and limit it to compliant devices.  Conditional access obviously isn't the solution as it's only for accessing cloud apps.  I guess a dynamic group wouldn't work either as it'd require Intune enrollment to get the compliance data.  Any ideas?

157 Views
0 Likes
4 Replies
Reply
4 Replies
Moe_Kinani

‎08-16-2020 07:56 PM

‎08-16-2020 07:56 PM

Re: Deploy app to compliant devices only

Hi stromnessian,

I thought Non-compliant devices will not receive apps or config policies from Intune anyways, do you see different experience?


Moe
0 Likes
Reply
stromnessian

‎08-16-2020 10:08 PM

‎08-16-2020 10:08 PM

Re: Deploy app to compliant devices only

@Moe_Kinani yes, non-compliant devices receive apps/config profiles the same as compliant ones do.

 

Regards

Keith 

0 Likes
Reply
eglockling

‎08-17-2020 06:39 PM

‎08-17-2020 06:39 PM

Re: Deploy app to compliant devices only

@stromnessian  Doesn't the device need to enroll with Intune to be identified as compliant/non-compliant? You're right about not being able to use Dynamic AAD group though, because device compliance is not an available Property for creating the dynamic membership rule.

0 Likes
Reply
Moe_Kinani

‎08-17-2020 08:48 PM

‎08-17-2020 08:48 PM

Re: Deploy app to compliant devices only

Hi Keith,

Thanks. I don’t see any other ways that you can achieve the objective. As you mentioned, CA can block access to resources, not what you looking for.

Moe
0 Likes
Reply