question

tarouchabi-7271 avatar image
0 Votes"
tarouchabi-7271 asked LuDaiMSFT-0289 commented

Non-compliant of iOS

Is there a way to make the device non-compliant immediately after the user or malicious third party deletes the intune profile?
Even after the user deletes the profile, the admin center is treated as compliant.

mem-intune-generalmem-intune-device-configurations
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

LuDaiMSFT-0289 avatar image
0 Votes"
LuDaiMSFT-0289 answered LuDaiMSFT-0289 commented

@tarouchabi-7271 In our official article, the settings of compliance policy lists in the following link. However, there is no built-in settings to determine device compliance based on the presence or absence of the intune profile.
https://docs.microsoft.com/en-us/mem/intune/protect/create-compliance-policy

At the same time, I have done the test in my lab. When I delete the intune profile in the iOS device and wait about 5-10 minutes, I refresh in intune portal and check the compliance is "Not Evaluated".
90564-image.png

"Not evaluated" is one of the device complicance status. When the intune profile is deleted in the iOS device, it means the iOS device is unmanaged by intune. So, the device doesn't have a trigger to check for compliance and shows "Not evaluated".

Thanks for understanding.


If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.



image.png (49.3 KiB)
· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Thank you very much.
I might have had to wait patiently. After 5 hours, I checked it and it was in the same state.
And, now, I think apps that aren't blocked by conditional access rely on token caching..............

0 Votes 0 ·

@tarouchabi-7271 Sorry, I didn't met this situation. Or you can open a case to get more help. It is free. The following link describes how to open a case, we can refer to it:
https://docs.microsoft.com/en-us/mem/intune/fundamentals/get-support

Thanks and have a nice day.

0 Votes 0 ·