I recently deployed DUO MFA through Azure AD conditional access for Azure AD access.
It is aimed to protect access to emails stored in Exchange Online.
It works fine with desktop Outlook and OWA.
However, all iOS native Mail client get the message below and emails syncing stops.
Excluding affected users gets access to emails on iOS Mail client back to normal.
I've come across the se articles where solution was found by granting tenant permission for iOS app.
Just a bit unclear how to grant that permission and what are potential implications.