SOLVED

iOS Native VS Outlook

%3CLINGO-SUB%20id%3D%22lingo-sub-336112%22%20slang%3D%22en-US%22%3ERe%3A%20iOS%20Native%20VS%20Outlook%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-336112%22%20slang%3D%22en-US%22%3EHi%20%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F142545%22%20target%3D%22_blank%22%3E%40Daniel%20Schmidt%3C%2FA%3E%2C%3CBR%20%2F%3E%3CBR%20%2F%3EYou%20can't%20implement%20app%20protection%20policies%20on%20the%20native%20IoS%20app.%20Good%20articles%20to%20read%20are%3A%3CBR%20%2F%3E%3CBR%20%2F%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fintune%2Fapp-protection-policy%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fintune%2Fapp-protection-policy%3C%2FA%3E%3CBR%20%2F%3E%3CA%20href%3D%22https%3A%2F%2Fwww.systemcenterdudes.com%2Fintune-ios-mail-outlook-app%2F%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fwww.systemcenterdudes.com%2Fintune-ios-mail-outlook-app%2F%3C%2FA%3E%3CBR%20%2F%3E%3CBR%20%2F%3EIt%20is%20also%20more%20difficult%20in%20terms%20of%20support%2C%20as%20you%20are%20using%20a%20non-microsoft%20app%20for%20mail.%3CBR%20%2F%3E%3CBR%20%2F%3EBy%20using%20native%20mail%20app%20and%20not%20using%20app%20protection%20policies%2C%20users%20can%20download%20the%20organisations%20mail%20and%20data%20out%20of%20the%20native%20app%20onto%20the%20device%20and%20then%20potentially%20upload%20it%20to%20third%20party%20apps%2C%20possibly%20to%20competitors.%3CBR%20%2F%3E%3CBR%20%2F%3E%3CA%20href%3D%22https%3A%2F%2Fpractical365.com%2Fclients%2Fmobile-devices%2Fintune-mam-conditional-access-policies%2F%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fpractical365.com%2Fclients%2Fmobile-devices%2Fintune-mam-conditional-access-policies%2F%3C%2FA%3E%3CBR%20%2F%3E%3CBR%20%2F%3EIn%20other%20words%2C%20it%20facilitates%20data%20leakage%20and%20insider%20threats.%3CBR%20%2F%3E%3CBR%20%2F%3EHope%20that%20answers%20your%20question!%3CBR%20%2F%3E%3CBR%20%2F%3EBest%2C%20Chris%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-810526%22%20slang%3D%22en-US%22%3ERe%3A%20iOS%20Native%20VS%20Outlook%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-810526%22%20slang%3D%22en-US%22%3E%3CP%3EHello%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F169605%22%20target%3D%22_blank%22%3E%40Christopher%20Hoard%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThank%20you%20for%20this%20answer.%26nbsp%3B%3C%2FP%3E%3CP%3EIs%20it%20a%20good%20idea%20to%20move%20from%20iOS%20Native%20Mail%20to%20Microsoft%20Outlook%20for%20iOS.%20I%20should%20find%20a%20table%20that%20compares%20the%202%20products%20and%20what's%20the%20best%20for%20our%20users.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-335270%22%20slang%3D%22en-US%22%3EiOS%20Native%20VS%20Outlook%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-335270%22%20slang%3D%22en-US%22%3E%3CP%3EHello%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWe%20are%20currently%20on%20Airwatch%20and%20iOS%20users%20use%20the%20Native%20Client%2C%20we%20are%20working%20on%20migrating%20to%20Intune%20(EMS%2BSecurity%20E5)%20and%20are%20getting%20some%20pushback%20about%20using%20the%20Outlook%20Client%20(Notifications%2C%20calendar%2C%20etc.).%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWhat%20do%20we%20loose%20security%20wise%20if%20we%20stick%20with%20iOS%20native%20Client%3F%26nbsp%3B%20I%20think%20there%20is%20some%20possible%20AIP%20problems%20(once%20that%20is%20implemented)%2C%20has%20anyone%20has%20experience%20with%20that%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThank%20you%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EDaniel%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-335270%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EEmail%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EiOS%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Enative%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-810574%22%20slang%3D%22en-US%22%3ERe%3A%20iOS%20Native%20VS%20Outlook%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-810574%22%20slang%3D%22en-US%22%3EHi%20%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F383613%22%20target%3D%22_blank%22%3E%40Sofianeda1st%3C%2FA%3E%3CBR%20%2F%3E%3CBR%20%2F%3EI%20can't%20find%20a%20direct%20comparison%20table%20-%20but%20I%20hope%20that%20this%20article%20will%20suffice%20as%20to%20why%20Outlook%20for%20IoS%20is%20the%20best%20-%20and%20recommended%20by%20Microsoft%20for%20both%20functionality%20and%20security.%3CBR%20%2F%3E%3CBR%20%2F%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fexchange%2Fclients-and-mobile-in-exchange-online%2Foutlook-for-ios-and-android%2Foutlook-for-ios-and-android%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fexchange%2Fclients-and-mobile-in-exchange-online%2Foutlook-for-ios-and-android%2Foutlook-for-ios-and-android%3C%2FA%3E%3CBR%20%2F%3E%3CBR%20%2F%3EYou%20would%20use%20the%20Outlook%20for%20IoS%20app%20in%20conjunction%20with%20Intune%20which%20would%20manage%20the%20app%20and%20apply%20app%20protection%20and%20configuration%20policies.%3CBR%20%2F%3E%3CBR%20%2F%3EBest%2C%20Chris%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-810704%22%20slang%3D%22en-US%22%3ERe%3A%20iOS%20Native%20VS%20Outlook%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-810704%22%20slang%3D%22en-US%22%3E%3CP%3EThank%20you%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F169605%22%20target%3D%22_blank%22%3E%40Christopher%20Hoard%3C%2FA%3E%26nbsp%3Bfor%20the%20link.%26nbsp%3B%3C%2FP%3E%3CP%3EFor%20the%20moment%20I'm%20gonna%20stay%20neutral%2C%20but%20I've%20to%20make%20a%20table%20to%20compare%20these%202%20products%20%26amp%3B%20to%20say%20what's%20the%20best%20for%20our%20users%20(Should%20the%20user%20stay%20on%20Mail%20App%20iOS%20or%20move%20to%20Microsoft%20Outlook%20and%20Why%3F%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-846744%22%20slang%3D%22en-US%22%3ERe%3A%20iOS%20Native%20VS%20Outlook%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-846744%22%20slang%3D%22en-US%22%3E%3CP%3EHi%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F383613%22%20target%3D%22_blank%22%3E%40Sofianeda1st%3C%2FA%3E%26nbsp%3B%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EJust%20reading%20this%20thread%20as%20we%20have%20several%20executives%20that%20want%20to%20continue%20to%20use%20the%20native%20email%20and%20calendar%2C%20rather%20tham%20migrating%20to%20Outlook%20for%20IOS.%26nbsp%3B%20Did%20you%20get%20that%20comparison%20table%20put%20together%3F%26nbsp%3B%20If%20so%2C%20would%20it%20be%20possible%20for%20you%20to%20share%20it%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThanks!%26nbsp%3B%20Frank%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-847208%22%20slang%3D%22en-US%22%3ERe%3A%20iOS%20Native%20VS%20Outlook%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-847208%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F406600%22%20target%3D%22_blank%22%3E%40fcorker%3C%2FA%3E%26nbsp%3BI%20don't%20have%20a%20table%20but%20if%20there%20is%20any%20HIPAA%2C%20PCI%2C%20PHI%20or%20IP%20data%20in%20the%20Executives%20emails%20then%20I%20would%20warn%20them%20that%20continue%20using%20native%20email%20will%20let%20anyone%3C%2FP%3E%3CP%3E1.%20Backup%20this%20data%20to%20iCloud%3C%2FP%3E%3CP%3E2.%20Take%20Screenshots%3C%2FP%3E%3CP%3E3.%20Share%20with%20other%20apps%20(Manually%20or%20via%20a%20Virus)%3C%2FP%3E%3CP%3E4.%20Save%20on%20phone%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EIf%20somone%20leaves%20the%20company%20they%20can%20easily%20restore%20all%20data%20data%20via%20iCloud%20and%20steal%20customers%2C%20IP%20and%20more%2C%20if%20the%20phone%20gets%20stolen%20then%20there%20is%20risk%20of%20that%20data%20leaking%20to%20hackers.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-848399%22%20slang%3D%22en-US%22%3ERe%3A%20iOS%20Native%20VS%20Outlook%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-848399%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F142545%22%20target%3D%22_blank%22%3E%40Daniel%20Schmidt%3C%2FA%3E%26nbsp%3BThank%20you%2C%20Excellent%20points%2C%20and%20pretty%20high%20risk.%26nbsp%3B%26nbsp%3B%3C%2FP%3E%3CP%3EFrank%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1288483%22%20slang%3D%22en-US%22%3ERe%3A%20iOS%20Native%20VS%20Outlook%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1288483%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F142545%22%20target%3D%22_blank%22%3E%40Daniel%20Schmidt%3C%2FA%3E%2C%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F169605%22%20target%3D%22_blank%22%3E%40Christopher%20Hoard%3C%2FA%3E%26nbsp%3B%2C%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F406600%22%20target%3D%22_blank%22%3E%40fcorker%3C%2FA%3E%26nbsp%3B%26nbsp%3B%3CBR%20%2F%3E%3CBR%20%2F%3E%3C%2FP%3E%0A%3CP%3EThis%20thread%20came%20across%20my%20desk%20today%2C%20so%20I%20thought%20it%20would%20be%20good%20to%20reply%20and%20provide%20context%20as%20there%20are%20statements%20within%20that%20are%20not%20entirely%20accurate.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EFirst%20and%20foremost%2C%20Apple%20provides%20a%20secure%20operating%20system%20and%20tests%20App%20store%20apps%20to%20be%20free%20of%20viruses%20and%20malicious%20code.%20Apple%20also%20releases%20software%20updates%20to%20address%20security%20vulnerabilities.%20For%20more%20information%2C%20see%20%3CA%20href%3D%22https%3A%2F%2Fsupport.apple.com%2Fguide%2Fsecurity%2Fios-and-ipados-app-security-overview-secf49cad4db%2Fweb%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fsupport.apple.com%2Fguide%2Fsecurity%2Fios-and-ipados-app-security-overview-secf49cad4db%2Fweb%3C%2FA%3E%20and%20%3CA%20href%3D%22https%3A%2F%2Fsupport.apple.com%2Fen-us%2FHT201222%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fsupport.apple.com%2Fen-us%2FHT201222%3C%2FA%3E.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3ESecond%2C%20Intune%20App%20Protection%20Policies%20and%20apps%20that%20support%20them%2C%20like%20Outlook%20for%20iOS%2C%20do%20provide%20enhanced%20data%20protection%20features%20that%20are%20not%20otherwise%20available%20on%20unenrolled%20devices%20or%20unprotected%20apps.%20For%20example%2C%20ensuring%20corporate%20data%20can%20only%20be%20accessed%20after%20entering%20a%20PIN%20or%20via%20biometrics%2C%20blocking%20transfer%20to%20unprotected%20apps%20or%20personal%20accounts%2C%20providing%20selective%20wipe%20capabilities%2C%20etc.%20For%20more%20information%20on%20recommended%20policy%20settings%2C%20see%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fmem%2Fintune%2Fapps%2Fapp-protection-framework%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fmem%2Fintune%2Fapps%2Fapp-protection-framework%3C%2FA%3E.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EApple%20has%20robust%20enrollment%20capabilities%20(device%2C%20user%2C%20and%20supervised)%20that%20provide%20IT%20admins%20with%20the%20capability%20to%20protect%20corporate%20data.%20For%20example%2C%20admins%20can%20push%20down%20a%20managed%20EAS%20device%20profile%20for%20the%20native%20apps%20that%20when%20coupled%20with%20specific%20device%20restrictions%20prevents%20corporate%20data%20from%20being%20viewed%20in%20personal%20apps%20that%20are%20not%20managed%20by%20the%20MDM%2C%20prevents%20managed%20ActiveSync%20contacts%20from%20being%20exposed%20to%20personal%20apps%2C%20disables%20screen%20capture%2C%20and%20disables%20iCloud%20backups.%20For%20more%20information%20on%20how%20to%20do%20this%20with%20Intune%2C%20see%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fmem%2Fintune%2Fconfiguration%2Fdevice-restrictions-ios%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fmem%2Fintune%2Fconfiguration%2Fdevice-restrictions-ios%3C%2FA%3E%20and%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fmem%2Fintune%2Fconfiguration%2Femail-settings-ios%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fmem%2Fintune%2Fconfiguration%2Femail-settings-ios%3C%2FA%3E.%20On%20enrolled%20devices%2C%20App%20Protection%20Policies%20(cut%2Fcopy%2Fpaste%2C%20Save%20As%2C%20managed%20browser%20controls%2C%20etc.)%20can%20be%20used%20with%20apps%20that%20have%20integrated%20the%20Intune%20SDK%20to%20further%20protect%20corporate%20data.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EAs%20an%20engineering%20leader%20in%20Outlook%20and%20Intune%2C%20I%20believe%20Outlook%20for%20iOS%20provides%20an%20experience%20that%20is%20unparalleled%20with%20any%20other%20messaging%20and%20collaboration%20app.%20Outlook%20for%20iOS%20offers%20tight%20integration%20with%20Office%20365%2C%20exceptional%20calendaring%20functionality%2C%20intelligence%20that%20anticipates%20our%20user's%20needs%2C%20and%20enhanced%20security%20capabilities.%20For%20more%20information%2C%20see%20%3CA%20href%3D%22http%3A%2F%2Faka.ms%2Fstartoutlookmobile%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttp%3A%2F%2Faka.ms%2Fstartoutlookmobile%3C%2FA%3E%20and%20%3CA%20href%3D%22http%3A%2F%2Faka.ms%2Fsecureom%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttp%3A%2F%2Faka.ms%2Fsecureom%3C%2FA%3E.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3ERoss%20Smith%20IV%3CBR%20%2F%3EPrincipal%20Program%20Manager%3CBR%20%2F%3ECustomer%20Experience%20Engineering%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1288907%22%20slang%3D%22en-US%22%3ERe%3A%20iOS%20Native%20VS%20Outlook%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1288907%22%20slang%3D%22en-US%22%3EThat's%20awesome%20thanks%20%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F70852%22%20target%3D%22_blank%22%3E%40Ross%20Smith%20IV%3C%2FA%3E%20%3CBR%20%2F%3E%3CBR%20%2F%3EBest%2C%20Chris%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1290697%22%20slang%3D%22en-US%22%3ERe%3A%20iOS%20Native%20VS%20Outlook%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1290697%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F169605%22%20target%3D%22_blank%22%3E%40Christopher%20Hoard%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EJust%20a%20few%20short%20thoughts%20i%20wrote%20down%20once%20upon%20a%20time%2C%20when%20i%20was%20facing%20the%20same%20situation.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3COL%3E%3CLI%3Eeasier%20management%20of%20the%20outlook%20app%3COL%3E%3CLI%3Eyou%20can%20secure%20the%20app%20even%20when%20the%20device%20is%20not%20enrolled%20in%20management.%20(App%20protection)%3C%2FLI%3E%3C%2FOL%3E%3C%2FLI%3E%3CLI%3Ecloud%20integration%3COL%3E%3CLI%3Eability%20to%20directly%20open%20files%20from%20onedrive%20or%20sharepoint%20itself%3C%2FLI%3E%3CLI%3Esend%20attachements%20out%20of%20onedrive%3C%2FLI%3E%3C%2FOL%3E%3C%2FLI%3E%3CLI%3Ecalendar%20integration%3COL%3E%3CLI%3Eability%20to%20see%20availability%20and%20send%20appropriate%20meeting%20invitations%20based%20on%20availability%3C%2FLI%3E%3C%2FOL%3E%3C%2FLI%3E%3CLI%3Eusability%20e.g.%20swipe%20actions%20like%20%22rescheduling%20a%20mail%3C%2FLI%3E%3C%2FOL%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E
Highlighted
Contributor

Hello,

 

We are currently on Airwatch and iOS users use the Native Client, we are working on migrating to Intune (EMS+Security E5) and are getting some pushback about using the Outlook Client (Notifications, calendar, etc.).

 

What do we loose security wise if we stick with iOS native Client?  I think there is some possible AIP problems (once that is implemented), has anyone has experience with that?

 

Thank you

 

Daniel

10 Replies
Highlighted
Solution
Hi @Daniel Schmidt,

You can't implement app protection policies on the native IoS app. Good articles to read are:

https://docs.microsoft.com/en-us/intune/app-protection-policy
https://www.systemcenterdudes.com/intune-ios-mail-outlook-app/

It is also more difficult in terms of support, as you are using a non-microsoft app for mail.

By using native mail app and not using app protection policies, users can download the organisations mail and data out of the native app onto the device and then potentially upload it to third party apps, possibly to competitors.

https://practical365.com/clients/mobile-devices/intune-mam-conditional-access-policies/

In other words, it facilitates data leakage and insider threats.

Hope that answers your question!

Best, Chris
Highlighted

Hello @Christopher Hoard 

Thank you for this answer. 

Is it a good idea to move from iOS Native Mail to Microsoft Outlook for iOS. I should find a table that compares the 2 products and what's the best for our users.

Highlighted
Hi @Sofianeda1st

I can't find a direct comparison table - but I hope that this article will suffice as to why Outlook for IoS is the best - and recommended by Microsoft for both functionality and security.

https://docs.microsoft.com/en-us/exchange/clients-and-mobile-in-exchange-online/outlook-for-ios-and-...

You would use the Outlook for IoS app in conjunction with Intune which would manage the app and apply app protection and configuration policies.

Best, Chris
Highlighted

Thank you @Christopher Hoard for the link. 

For the moment I'm gonna stay neutral, but I've to make a table to compare these 2 products & to say what's the best for our users (Should the user stay on Mail App iOS or move to Microsoft Outlook and Why? 

Highlighted

Hi @Sofianeda1st ,

 

Just reading this thread as we have several executives that want to continue to use the native email and calendar, rather tham migrating to Outlook for IOS.  Did you get that comparison table put together?  If so, would it be possible for you to share it?

 

Thanks!  Frank

 

Highlighted

@fcorker I don't have a table but if there is any HIPAA, PCI, PHI or IP data in the Executives emails then I would warn them that continue using native email will let anyone

1. Backup this data to iCloud

2. Take Screenshots

3. Share with other apps (Manually or via a Virus)

4. Save on phone

 

If somone leaves the company they can easily restore all data data via iCloud and steal customers, IP and more, if the phone gets stolen then there is risk of that data leaking to hackers.

Highlighted

@Daniel Schmidt Thank you, Excellent points, and pretty high risk.  

Frank

Highlighted

@Daniel Schmidt@Christopher Hoard , @fcorker  

This thread came across my desk today, so I thought it would be good to reply and provide context as there are statements within that are not entirely accurate.

 

First and foremost, Apple provides a secure operating system and tests App store apps to be free of viruses and malicious code. Apple also releases software updates to address security vulnerabilities. For more information, see https://support.apple.com/guide/security/ios-and-ipados-app-security-overview-secf49cad4db/web and https://support.apple.com/en-us/HT201222.

 

Second, Intune App Protection Policies and apps that support them, like Outlook for iOS, do provide enhanced data protection features that are not otherwise available on unenrolled devices or unprotected apps. For example, ensuring corporate data can only be accessed after entering a PIN or via biometrics, blocking transfer to unprotected apps or personal accounts, providing selective wipe capabilities, etc. For more information on recommended policy settings, see https://docs.microsoft.com/mem/intune/apps/app-protection-framework.

 

Apple has robust enrollment capabilities (device, user, and supervised) that provide IT admins with the capability to protect corporate data. For example, admins can push down a managed EAS device profile for the native apps that when coupled with specific device restrictions prevents corporate data from being viewed in personal apps that are not managed by the MDM, prevents managed ActiveSync contacts from being exposed to personal apps, disables screen capture, and disables iCloud backups. For more information on how to do this with Intune, see https://docs.microsoft.com/mem/intune/configuration/device-restrictions-ios and https://docs.microsoft.com/mem/intune/configuration/email-settings-ios. On enrolled devices, App Protection Policies (cut/copy/paste, Save As, managed browser controls, etc.) can be used with apps that have integrated the Intune SDK to further protect corporate data.

 

As an engineering leader in Outlook and Intune, I believe Outlook for iOS provides an experience that is unparalleled with any other messaging and collaboration app. Outlook for iOS offers tight integration with Office 365, exceptional calendaring functionality, intelligence that anticipates our user's needs, and enhanced security capabilities. For more information, see http://aka.ms/startoutlookmobile and http://aka.ms/secureom.

 

Ross Smith IV
Principal Program Manager
Customer Experience Engineering

Highlighted
That's awesome thanks @Ross Smith IV

Best, Chris
Highlighted

@Christopher Hoard 

 

Just a few short thoughts i wrote down once upon a time, when i was facing the same situation.

 

  1. easier management of the outlook app
    1. you can secure the app even when the device is not enrolled in management. (App protection)
  2. cloud integration
    1. ability to directly open files from onedrive or sharepoint itself
    2. send attachements out of onedrive
  3. calendar integration
    1. ability to see availability and send appropriate meeting invitations based on availability
  4. usability e.g. swipe actions like "rescheduling a mail

 

Related Conversations
Avoid junk mail/spam mail
Sumaira370 in Exchange on
0 Replies
Missing presence status in Outlook
ThomasSteibl in Microsoft Teams on
2 Replies
Productivity - Outlook
Erico Feitosa in Office 365 on
0 Replies
No Outlook in Office 365 License?
Thomasr3990 in Office 365 on
3 Replies