Oct 24 2023 09:15 AM
I have having an issue starting today 10/24 - Company Portal update was released 10/23
Any new enrollments are stuck with the Company Portal in Single App mode by design and enrollment policy.
After the user completes enrollment, the device remains in Single App mode. The devices are reporting as non-compliant at first with no Compliance Policy.
After the compliance policy is set, the device is still locked in single app mode waiting for the Password to be brought into compliance. The password change prompt is hidden being the Single App mode and cannot be accessed.
No matter what I do, the Company Portal is locked in single app mode. I have no option but to turn off this feature which prevents my devices from being stolen.
Has anyone seen this same issue and been able to get past if without turning off this feature 'Run Company Portal in Single App Mode until authentication' during enrollment?
Oct 24 2023 10:57 AM
Hey, we are facing the exact same issue. We have tried a number of things but no success. We have not removed the feature for test as we do not wanna do that either. @Justin Graham I have a ticket open with MS right now and waiting to hear back from them. What other suggestions do you have? Do you know how to get the app updated from the MS side to the phones? We are using iOS devices.
Thanks
Ryan
Oct 24 2023 11:01 AM
Oct 24 2023 03:48 PM
The company prortal updates after the device wipes. I gooe if there is a fix it updates in the background. So far, several end user devices and our test devives. Any new dedicated devuce enrollments are broken.
We are unable to deploy devices.
I have tried everything.
Send password resets. Restarts locally and remote. Device rewipes. Pushed policy.
Have not tried:
Pushing no password policy
Force uninstall company portal
Still leaving thr forced company portal requirement
Oct 25 2023 12:28 AM
@ZydecoRyan - Did you get anything from Microsoft on your case mine has just been closed with the update no issue found I have relogged it.
Oct 25 2023 02:03 AM - edited Oct 25 2023 02:05 AM
I am having the same issue also, which seems to have started today (25th, Australia).
For us, once you reach the home screen, the Company Portal app doesn't launch by itself as expected. I can swipe around the phone and launch any app I can, even though I have the enrolment profile configured in Single App mode. If I launch Company Portal, it will prompt for login as expected:
Intune shows the phone is completely compliant and all policies have applied but I cannot escape Single App mode on the phone no matter how much time I let pass, or any number of forced restarts,
On top of this, today has also seen a number of users' Outlook app suddenly stop working after it updates. Upon investigation it seems Conditional access suddenly thinks I have no app configuration policy applied for to Outlook, even though I have.
Other MS apps (OneDrive, Teams, etc) seem to be fine unless you log out of them then try to log back in.
When you try to log into Outlook or any of the other apps, after the MFA portion, you will be presented with a "Error: Something Went Wrong [1001]" message. Not a good day for intune...
Oct 25 2023 05:01 AM
@LeeWillIT There has been no response from MS as of yet. I did get a few emails from them, the call that did come was either hung up on or disconnected, but no call back as of 8 AM Est. (Ontario Canada) Mine is still open.
We are in the middle of a new cell phone roll out and this is what I did not want to have happen. (I feared something like this when I first started playing with Intune and iOS devices, I was having all kinds of strange issues, but managed to get it working at some point) I am looking into the option of removing the password compliance but CANNOT have the phone go out that way. So, I am not even sure it is worth looking further into. My only thinking was that I could then put the compliance on afterwards, but I am not sure that is a great idea in the middle of a roll out. (Too much overhead)
Hope something changes soon!!!
Oct 25 2023 05:10 AM
@DanielCap78 Like you still 24 hours later still seeing the same issues:
So I am not sure what I am to do at this point. I have restarted our Intune connector server, and the service itself without success, checked all certs and such on both Apple and Intune.
CANNOT CHANGE THE SEVERITY OF MY TICKET WITH MS....??? Why not?
Thanks.
Oct 25 2023 05:14 AM
Oct 25 2023 05:15 AM
Oct 25 2023 06:10 AM
Oct 25 2023 06:13 AM
Oct 25 2023 07:23 AM
Oct 25 2023 08:00 AM
Oct 25 2023 11:40 AM
Oct 25 2023 12:01 PM
Oct 25 2023 12:04 PM
Oct 25 2023 12:14 PM
@ZydecoRyan Same here. Everything was running smoothly and then yesterday I was inundated with users not able to get past the Company Portal login. Had to send out communication to hold off on porting from our old provider until this is resolved.
Oct 25 2023 02:25 PM - edited Oct 25 2023 02:57 PM
@ZydecoRyan I accepted the new policies yesterday morning and I still had the issue late last night, so I don't think accepting it helps. I do think something from this change from Apple has broken things between them and Intune though.
Just tried again this morning and still having the same issues.
I am going to renew my VPP and Push certificates and see if that helps. Will post results shortly.
UPDATE: I renewed VPP and Push. Re-synced both in inTune then tried to enrol a phone and still have the same issues.
Not sure if MS is putting any priority on this. Their service status for inTune is still listed as "healthy" in my Admin Centre.
Oct 26 2023 02:59 AM - edited Oct 26 2023 03:00 AM
Hi All, Our devices have just started working again and the issue seems to have cleared we havent had a company portal update or anything but all phones that had the issue are now going through the config.
We did accept the new Apple T+C yesterday but I dont feel that was linked.