I shot a message to a colleague who is still in IT (I’m into other shit these days) and he says you’re correct. IOS doesn’t allow for this. The IT department running Mobile Device Management would have to set up Mobile App Management (MAM) on their side. So it’s possible that they only get access to those apps without giving them access to the whole device but a lot of lazy departments won’t do it.
Well that explains why one of the other teams clients revolted against intune and switched to just using MFA for o365.
Its funny, they are so jaded by the MDM they keep grilling people about the MFA and if it gives access to their phones, etc.
I also think some people are starting to catch on to Microsoft’s apps collecting too much data, including MFA. Theres a big banner when you first set it up asking for permission.
I shot a message to a colleague who is still in IT (I’m into other shit these days) and he says you’re correct. IOS doesn’t allow for this. The IT department running Mobile Device Management would have to set up Mobile App Management (MAM) on their side. So it’s possible that they only get access to those apps without giving them access to the whole device but a lot of lazy departments won’t do it.
Well that explains why one of the other teams clients revolted against intune and switched to just using MFA for o365.
Its funny, they are so jaded by the MDM they keep grilling people about the MFA and if it gives access to their phones, etc.
I also think some people are starting to catch on to Microsoft’s apps collecting too much data, including MFA. Theres a big banner when you first set it up asking for permission.