How to managed IOS OS 10.0 -11.0 with Modern authentication

%3CLINGO-SUB%20id%3D%22lingo-sub-1518287%22%20slang%3D%22en-US%22%3EHow%20to%20managed%20IOS%20OS%2010.0%20-11.0%20with%20Modern%20authentication%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1518287%22%20slang%3D%22en-US%22%3E%3CP%3E%3CSTRONG%3EScenario%3C%2FSTRONG%3E%3CSPAN%3E%3A%20Client%20has%20existing%20iPhone's%20already%20in%20use%20-%2090%25%20use%20native%20iOS%20App%20-%20We%20want%20to%20force%20these%20devices%20into%20MDM%20Enrollment%20(via%20Intune)%3C%2FSPAN%3E%3CSTRONG%3E%20and%26nbsp%3B%3C%2FSTRONG%3EForce%20them%20to%20use%20MS%20Outlook%20APP.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ECurrently%2C%2050%2B%20devices%20are%20between%2010%20and%2011%20OS%20version.%20Rest%20are%2011%2B%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ENeed%20to%20move%20all%20these%20IOS%20users%20for%20modern%20auth%20before%20Oct%202020%20without%20any%20business%20impact.%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Ffr-fr%2Fazure%2Factive-directory%2Fconditional-access%2Fapp-based-conditional-access%23exchange-online-policy%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Ffr-fr%2Fazure%2Factive-directory%2Fconditional-access%2Fapp-based-conditional-access%23exchange-online-policy%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ESA%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-1518287%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EIntune%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EMobile%20Application%20Management%20(MAM)%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EMobile%20Device%20Management%20(MDM)%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Highlighted
Contributor

Scenario: Client has existing iPhone's already in use - 90% use native iOS App - We want to force these devices into MDM Enrollment (via Intune) and Force them to use MS Outlook APP.

 

Currently, 50+ devices are between 10 and 11 OS version. Rest are 11+ 

 

Need to move all these IOS users for modern auth before Oct 2020 without any business impact. 

 

https://docs.microsoft.com/fr-fr/azure/active-directory/conditional-access/app-based-conditional-acc...

 

SA

1 Reply
Highlighted
I would setup your entire Intune environment first with all the policies you desire + configuration for the Outlook app (app configuration policy, so all the settings are configured for a user).

Document everything and announce users should move to the new MDM system.
Put an end date for the migration.

At that end date, enable conditional access policies to require a compliant device/ approved app for Office 365