Intune - App protection policies for custom applications & Intune app SDK
Recently, I setup a custom app in Intune for the purpose of rolling it out to both corporate and personal mobile devices. Something very routine, but it had it’s own share of challenges. The main challenge was getting the application protection policy (APP) to apply on the application after the roll out, but later on that.
I won’t cover the process of adding a custom application in APP. There are a number of good blogs out there that cover this process in detail, so I’ll jump straight into the issue.
The application in question goes by the name Workvivo and I added it’s application bundle id in the list of protected apps. Here is the snippet of the APP.
After applying the APP, I started to notice that the application will not check-in. Normally MAM policies take a little while to apply, but this was something else.
I started digging and it got me to the realization that maybe the application is not supported for APP after all. According to Microsoft,
“A MAM enabled application is one that is integrated with Intune App SDK. To receive Intune app protection policy, apps must initiate an enrollment request with the Intune MAM service. Apps can be configured in the Intune console to receive app protection policy with or without device enrollment. Enrolling with the Intune MAM service is required to receive policy.”
At this point, I went to back to the vendor to confirm if the app was integrated with Intune App SDK or not and they confirmed that it wasn’t. Obviously, there isn't much I can do in terms of applying APP, but this was insightful for sure.
Hope this helps!
Until next time..
References –
https://docs.microsoft.com/en-us/mem/intune/apps/troubleshoot-app-protection-policy-deployment
https://docs.microsoft.com/en-us/mem/intune/developer/app-sdk-get-started
https://docs.microsoft.com/en-us/mem/intune/developer/app-sdk
Comments
Post a Comment