Hi all,
for all who have the same question or challenge. I found it out myself.
You have to add the following settings to your app manifest within App Registration on Azure
"optionalClaims": {
"idToken": [],
"accessToken": [],
"saml2Token": [
{
"name": "is_device_managed",
"source": null,
"essential": true,
"additionalProperties": []
}
]
},
Then the attribute "http://schemas.microsoft.com/2012/01/devicecontext/claims/ismanaged" will be populated in the SAML assertion, when the device is managed.
Within our environment it only works with Edge/IE on desktop and Edge on iOS devices.
Hope that helps others as well.
Best regards
Seb