App configuration policies for Outlook mobile

When should we expect the new app configuration policy to be available in Intune?  Currently I'm seeing a policy with options only to configure the email account settings and block external images.  

Edit: It's there now!

Guys please add a configuration option for GCC Mode and an ability to wipe the signature

@Robert4049 

Thank you for your feedback.  We will consider your request to manage signatures. Feel free to add this to Outlook.uservoice.com. 

Regarding GCC mode, if you are an Office 365 administrator, please see the Message Center post MC175769 from March 18, 2019.   

By April 1st, US Office 365 Government Community Cloud customers will be using the native Microsoft sync technology that directly connects Outlook for iOS and Android directly to the FedRAMP compliant Exchange Online back end architecture. At that time, the set of services and features that will be accessible from Outlook mobile for GCC customers will be controlled by an Exchange Online organization setting (accessible via PowerShell cmdlet) and therefore the GCC mode toggle will be removed from the app settings. Outlook mobile will leverage the Exchange Online organization OutlookMobileGCCRestrictionsEnabled parameter value in the Office 365 Admin Center, not the Outlook mobile GCC mode toggle settings.

For more information: https://aka.ms/OMGCC  

We have now the option for users to allow their personal email in the outlook app (iOS and Android).
They have now the ability to add attachment from OneDrive for Business in their personal email, which is from a security perspective not allowed
Is their a possibility to block this option or does the user need to use 2 email apps ?

Hi

We are using AirWatch as our MDM

but we didn't managed to configure integration between airwatch to azure - app protection policies.

so we decided to use the app protection policies beside AirWatch and configured policies for both iOS and Android.

that means that any user can download outlook for mobile to his device and after configuring his account he will enforces with the MAM policy.

the main problem is with the contacts, i guess almost every one that deploy to his end users their email accounts facing this issue.

how to enable searching the GAL from the native email client.

this issue can cause our company to stop with a major change to start and working with the office 365 apps and all the conditional access :(

also the default setting inside the app is not to sync the contacts to the device, and beside this its not clear at all where to find the outlook contact inside the app.

It's a big change to the end users to move from Email Native Clients where they had separated apps for each thing (mail / calendar / contacts)
to the outlook app (that suppose to be much more friendly and convenience)

so please help!!!

The Save to Contacts feature is great.  However, is there any way for the user to NOT be able to do it on a second device?  For example, an MDM/Intune enrolled iPhone works nicely with this policy (once the user figures out where the "Save to Contacts" option is located.  However, when the user gets an MDM/Intune enrolled iPad, we don't want them to be able to "Save to Contacts" again or they will have duplicates.  

With the new policy/prompt, it's a trigger for the user to want to go to the spot to "Save to Contacts" is and save again -- thus duplicates.

Any tips?

@David Wanderer if the account has iCloud enabled for contacts, then we will detect that another Outlook app for the account in question is the master and prevent the export of contacts. This will prevent duplicates.

@Ross Smith IV, thank you.  That's reassuring and COOL!

It sounds like you know this stuff super well so I'm going to take a chance and ask one more if that's ok.  When I've transitioned users from iOS native apps to Outlook Mobile, one thing that comes up is how to deal with sharing contacts.  For example, before Outlook Mobile was introduced on a user's iPhone, they could share contacts by opening up a native contact, share contact, and select Message/iMessage.  The VCF would be attached to the message and the contact sent across to the other user.  The other user would click on the attached VCF and it would save to Contacts.

However, with Outlook Mobile as the mail app and "save to contacts" in play, I cannot find how to save the received contact into Outlook Mobile.  I hope i'm missing something obvious.   THANK YOU!

@David Wanderer Unfortunately, you aren't missing anything. Due to architectural limitations in iOS, we aren't able to support a bi-directional synchronization process with the iOS APIs, so you can't create a contact in the native Contacts app and have it sync to Outlook. That's why we refer to our Save Contacts feature as export functionality. You can take a look at http://aka.ms/omfaq for more information.

In this scenario, the user would have to manually copy the contact's data into Outlook to have that contact preserved in the user's mailbox.

@Ross Smith IV, I'm not necessarily wanting a 2 way sync (although it would be nice in certain circumstances).

I can share the contact with Outlook Mobile which attaches the VCF.  If I email it to myself, I can open it in the Windows Outlook client just fine and then save it.  However, if I open the same message in the Outlook Mobile client, I can see the VCF but it says file type not recognized.

The workaround is to open in Windows Outlook but ideally (especially for mobile folks), it would be great to be able to at least launch the VCF as an Outlook Mobile contact.

I get the sync thing -- so I'm looking for another alternative.

@David Wanderer Ah, sorry for missing the point. Correct, we don't support VCF today within Outlook mobile. It's a request we've received before, but I don't have anything to share on when we might support it in the future.

@Ross Smith IV  i recently migrated users to Outlook for iOS and some raised privacy concern related to Corporate Data.
With Native iOS mail client in case of contacts synced from Exchange to iOS device all contacts will be removed after device un-enrollment/profile removal. But with Outlook for iOS user can enable contact sync and then just delete the app with all contacts stayed in his iCloud. 

Is this flaw really exists or i'm missing something?

@Alexander Vanyurikhin - This is by design from the OS perspective. The operating system doesn't have any API capability to tell Outlook to initiate a profile remove when the user opts to uninstall the app - the OS simply deletes the app. Only a profile removal within Outlook can trigger Outlook to initiate the contact cleanup. Users either can manually perform the profile removal, or IT admins can initiate via a remote wipe (e.g., through App Protection Policies).

Hi

Is there a way we can control the swipe options within the outlook mobile app from App configuration policies ?

I cannot see there is from my side so not sure if it is possible or its in the pipe line ?

Thanks

@James Sirdifield - no we do not support swipe config as an app config setting and at present, don't have any plans in the pipeline.

@Ross Smith IVOk, Thank you for getting back to me.

@Ross Smith IV Hi Ross, we noticed that the latest Microsoft Outlook for Android (June 10, 2020) removed the managed configurations.  Can you provide any insight on this? 

@rw-kace That’s not expected. Are you using Intune or another MDM solution? We’ll investigate.

Hi @Ross Smith IV , we are using another MDM solution.  I'll cross post a link to another thread where others are having the same issue:
https://techcommunity.microsoft.com/t5/outlook/latest-outlook-mobile-june-11th-for-android-enterpris...

Thanks for investigating!

@rw-kace Thanks for the additional insight.

@rw-kace We believe this is now resolved with the new update we released to Google Play.

@Ross Smith IV Yes, it is reporting correctly now.  Thanks for your help!

Hi, my customers would like to see the function "slide to delete" or "slide to archive" configurable via MAM Policy. Is there anyhting on the roadmap for that?

Hi @Simon Scharschinger, we don't have anything on our roadmap to add app config support for the swipe actions.