question

karthikpalani-9530 avatar image
0 Votes"
karthikpalani-9530 asked karthikpalani-9530 commented

Intune - Device Policy

Hi All,

I need some advice on below configuration

  • I applied "Treat AirDrop as an unmanaged destination: Yes" for IOS devices under device restriction policy. It got applied under IOS management profile

But we were able to still transfer the photos and other information's via AIRDROP. As per my understanding, above policy should block. Is that my understanding correct

  • Also, i applied app protection policy blocking the backup of org data towards ITunes and ICloud. I applied the policy on Microsoft OneDrive cloud apps, seems still i can copy the data from OneDrive to ICloud

Also i tried reinstalling the OneDrive from Intune console, but still i was able to copy

Will this take some time to be effective? Please suggest

mem-intune-generalmem-intune-device-configurations
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

RahulJindal-2267 avatar image
0 Votes"
RahulJindal-2267 answered

The policy will apply against managed apps. Also, what setting are you using in APP for copying\transfer of data for managed apps? You may have to setup IntuneMAMUPN in application configuration for each managed applications for APP to apply correctly. You can refer to my blog for details. intune-application-protection-policies.html


5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

CiciWu2-MSFT avatar image
0 Votes"
CiciWu2-MSFT answered karthikpalani-9530 commented

For this restriction "Treat AirDrop as an unmanaged destination“ to work when it’s enabled, you must also disable “Allow documents from managed sources in unmanaged destinations.”
• Managed sources are apps and accounts installed using MDM or Apple Configurator 2.
• Unmanaged sources are apps installed from the App Store (including native system apps) and accounts set up manually on the device.

For the app protection policy, please set the following related settings and see if it persists: Settings -> Data Protection and click on “block” backup Org data to iTunes and iCloud backups, send Org data to other apps “All Apps”, receive data from other apps “All Apps”, save copies of Org data “Block”, allow user to save copies to selected services select “OneDrive for Business” and “SharePoint”, restrict cut, copy and paste between other aps “Policy managed apps with paste in”, sync app with native contacts app “Enable”, printing Org data “Enable” and third party keyboards “Disable”
100865-053101.png

If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.



053101.png (93.0 KiB)
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Sure i will test and get back

Thank you

0 Votes 0 ·
karthikpalani-9530 avatar image
0 Votes"
karthikpalani-9530 answered CiciWu2-MSFT commented

Hey Rahul/CiciWu2

I tried the above steps still i am able to copy data from OneDrive towards IOS notepad. Any prerequisites i am missing.

  • Also i am trying to send a email notification after devices turn non-compliant. Seems i am not getting emails. We are using lotus notes domino. Is this supported. Any idea why email is not triggered

· 3
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi, just an update that I am still doing test for copying data from OneDrive towards IOS notepad. If there is any update, I will update immediately. For question 2, as lotus notes domino is a third party software, due to limited resource, it is suggested to create an online support case or contact lotus notes domino support to resolve it more effectively. Here is the link: https://docs.microsoft.com/en-us/mem/get-support


0 Votes 0 ·

Hi Thanks

Email notification problem is due to wrong email ID specific to Lotus notes. So it is ok now

For app protection policy, even i am testing in my lab its not working (Cut/Copy/Paste) restriction

0 Votes 0 ·

@karthikpalani-9530 You are correct. These days I tested a lot in my environment but I can still copy/paste whatever I set any app protection policy. It is wired and I think we may need more deep analysis, such as logs and see if there is any evidence at the backend. Due to limited resources, it is suggested to create a free online support case for deeper analysis. Here is the link: https://docs.microsoft.com/en-us/mem/get-support


1 Vote 1 ·