Intune - Application Protection Policies for enrolled devices
Recently, I worked on setting up enrollment policies for Corporate devices in M icrosoft E ndpoint M anager (MEM aka Intune) for a customer. As part of the setup, I wanted to apply A pplication P rotection P olicies (APP aka MAM) for enrolled devices to add an additional layer of security and since the devices were being enrolled in the MDM, I was not bothered about setting up things for BYOD scenarios. While the MEM setup and application of the policies is straight forward for Android, for iOS\iPadOS, there is a bit more involved. I used the Company Portal enrollment method, so I am going to be focusing on the requirements for the same in this blog. The configuration involves 3 things that need to be taken into consideration – 1. Application configuration policy for iOS\iPadOS. 2. APP for Intune managed devices. 3. APP for unmanaged apps. Let’s cover the first requirement – Application configuration policy for iOS\IPadOS For iOS/iPadOS and for the 'Device type' selectio...