User Profile
AndrewDawson
Brass Contributor
Joined Dec 06, 2018
User Widgets
Recent Discussions
Re: iOS updating via Intune management
Nice answer. I would add if a functional device is critical to flight operations you should consider having a backup device on all flights. Doubling your per aircraft device budget this would provide you with backup hardware and the ability to have offset update schedules. If having two devices is a factor of weight then you could always keep 1 device at base and colour code the cases depending on the schedule. I.e red for days 7-17 and blue for 22-2 (giving you a gap between the updates)Re: iOS DEP enrolled devices missing Enrollment Profile (breaking dynamic group and filter logic)
NielsScheffers Tenant location: Asia Pacific 0101, Service release: 2205 Tenant location: Asia Pacific 0201, Service release: 2205 Note: Both were on 2204 when the issue started (yesterday), given the timing the issue seems related to the new release.Re: iOS DEP enrolled devices missing Enrollment Profile (breaking dynamic group and filter logic)
NielsScheffers we have at least one ticket open, has to supply additional impact information and now just waiting in feedback/resolution. Checked a third tenant on Asia Pacific 0501, this did not have the issue. Will check the versions and get back to you.iOS DEP enrolled devices missing Enrollment Profile (breaking dynamic group and filter logic)
Starting 31/05/2022 new iOS enrollments via Apple Business Manager Device Enrollment do not have an Enrollment Profile attribute assigned under Hardware, generally we use this attribute to define dynamic groups/filters. I have seen this on at least two different customer tenants so far. Example of a filter no longer matching a device enrollment. (previous enrollments still show the correct Enrollment Profile Note: Testing 3 tenants we only see two in APAC impacted so far. Asia Pacific 0101 Asia Pacific 0201Re: Company portal failing to install error 0x87D1041C
Thanks Soutumi Odd thing is this was all working fine with Company Portal in offline mode (using a device license), it just randomly broke on a few tenants with an error that seemed to indicate a problem with the application. Also noticed the app had a GUID for an app version, made me wonder if this was something to do with the new Microsoft store? Never had an issue with the online version and was using it as a work around for a customer. I am working on a new tenant build so will see how this one goes.Re: How to convert exe to win32
Start by testing the application install and uninstall on a reference machine, you should be able to install and uninstall the application with the same commands used in the application deployment. i.e. cmd, navigate to the exe folder and run the install command. Once you have install/uninstall working also take not of any detection information, registry/file and folder locations as you will need this in Endpoint Manager.Re: Huawei and Android Work Profile
No, unfortunately I never saw the bugreport or additional logging. I would test additional EMM’s including the AE test setup; https://enterprise.google.com/android/experience Feel free to send me a bugreport if you want to PM a link. (keep in mind some of the logged data may be sensitive)Re: Android for Work - Contacts?
Hi weberda Sameer1884, I have also found setting to Prompt can cause this issue, the problem can occur on any MDM platform and seems to happen to Android ~7-8 devices. Change the Default app permissions to default, this will have the same impact as prompt without defining the setting. Any application that requires Auto Grant will have to be setup using App Config under Client apps > App configuration policies. More information can be found here; https://docs.microsoft.com/en-us/intune/app-configuration-policies-use-android#preconfigure-the-permissions-grant-state-for-apps ,AndrewRe: Huawei and Android Work Profile
Hi ThoFord Based on what I have read so far I would not jump to Intune being the issue (well not a bug anyway). You have setup https://docs.microsoft.com/en-us/intune/connect-intune-android-enterprise and want to use Work Profile (do not use the traditional Device Admin setup), other users have this device model working with Intune and it is listed as Android Enterprise Recommended on googles site (this is a very small list and takes a lot more work to get the https://androidenterprisepartners.withgoogle.com/devices/#!?AER badge). Next steps; Test another device against your Intune config (not the same make/model, a similar OS version would be ideal but not necessary) Get the log from Email Support when you have the enrollment issue (as per screenshot) Generate a https://developer.android.com/studio/debug/bug-report and take a look Also; Make sure you have licences for enrolment (second test device enrollment will help understand if this is an issue) https://docs.microsoft.com/en-us/intune/enrollment-restrictions-set, start with just the Defaults and only allow Android work profile and not Android without any additional restrictions (i.e. OS, Personally Owned). I have seen some restrictions cause problems. Make sure you are not blocking enrollment via any other method (Conditional Access) Last; Log a job with Microsoft SupportRe: Intune blocking Android native app to work
Do you have any conditional access policies requiring the use of Modern authentication or approved client applications? https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/technical-reference#approved-client-app-requirement Any screenshots would also be useful. ——————— You should also reconsider the use of Android Device Admin for a number of reasons, urgency will depend on management requirements, devices models and OS (current and updates). Read up on device admin deprecation below. https://developers.google.com/android/work/device-admin-deprecation
