Intune and Application Protection without enrollment

ThorstenLubos · ‎Sep 12 2019

Hey All,

i've some questions about Intune / MAM / Application Protection Policys without Enrollment,

as displayed in the screenshots the Device isnt managed by the Company its a'private one' but i want to use some cloud apps with protected corporate data.

Everything should be blocked and at starting the app a pin prompt should start up.

It only shows the Data will be managed by the company dialog but its still possible to save the Documents local on the iPhone.

Maybe someone can figure out what its missing?

Kind regards - Thorsten

PatrickF11 · ‎Sep 13 2019

@ThorstenLubos Hi,

when you open the App and create a new document, this unsaved document is not in corporate context. Because of this, you can save this NOT-Corp Document wherever you want. Only if you save the document in the company area (e.g. onedrive or sharepoint itself) the policy would be applied.

Eswar Koneti · ‎Sep 15 2019

Everything should be blocked and at starting the app a pin prompt should start up.-->For this ,you set PIN in MAM policy with time out of x min. So every x min if the app is idle then pin will be prompted.

It only shows the Data will be managed by the company dialog but its still possible to save the Documents local on the iPhone. --You need to select Save copies of Org data to onedrive if you want users to store the data or allow local. https://docs.microsoft.com/en-us/intune/app-protection-policy-settings-ios#data-protection

Refer the MAM FAQS https://docs.microsoft.com/en-us/intune/mam-faq

Thanks,

Eswar

www.eskonr.com

Intune and Application Protection without enrollment

Intune and Application Protection without enrollment

Re: Intune and Application Protection without enrollment

Re: Intune and Application Protection without enrollment

Products (50)

Special Topics (27)

Video Hub (462)

Most Active Hubs

Most Active Hubs

Video Hub

Intune and Application Protection without enrollment