Hi,

Thanks for your responses Jason and Lizzie.

I hadn't found that article so thank you for providing it.

I'd like to see an Automatic update policy where it updates when the device isn't in active use for 30 minutes etc, unfortunately our devices are used worldwide 24/7 so we wouldn't be able to deploy a Windowed option for a specific time frame.

Also, what's the best method to request new features for COWP? We have a few in mind that we are losing going from POWP and would like to understand alternatives or if they will ever be implemented.

Thanks for your help.

Thanks so much for the follow up information @GMenzies. Glad the article is useful. I'll ask internally about your use case and see what we would suggest here. I'll get back to you.

Regarding your feature requests, are these things you are happy to share publicly here in the Community? If so, it would be great to hear if these requests are things that would help others and understand the use cases. It make it easier for me to report back to our product team. If you'd prefer not to share here, just let me know and I can follow up via direct message. 

Thanks so much,

Lizzie

Hi Lizzie,

Honestly most of this is small requests and some perhaps need to be managed through Microsoft (Our EMM is Intune) or are just how we manage things today and probably need to change.

• We're unable to provide our internal Google Workspace users with the ability to add their domain accounts to the devices, we work alongside Google for Chromebook development so having this option for COPE would be beneficial to improve their workflows and the customer experience we provide to these users so they can use their Android Mobile Devices and Chromebooks side by side, I know this is available for POWP (BYOD) devices in Intune today and we've created a DCR with Microsoft for this. Whether it's a requirement from Microsoft or Google is the next question.
• Our users like to add Work Profile app Widgets to their Home screen, this doesn't seem to be available as a setting for COPE devices (We're working with Microsoft on this to determine if it's available or not for COPE devices, again not sure on who the requirement falls on).
• We deploy a compliance policy with Intune to block devices that have been rooted for our POWP (BYOD) devices, this setting doesn't seem to be available for COPE devices in Intune today (We were told by Microsoft this would be a requirement for Google to make available), the best we can do is use our Device Security solution and a combination of ensuring Device Integrity with Google Play Protect, if you can confirm if Device Integrity is a suitable to detect rooted devices that would be great  - https://developer.android.com/google/play/integrity/verdicts#kotlin:~:text=The%20app%20is%20running%....

As I've said these are just a few that we've seen so far and perhaps most fall on Microsoft but I'd love to be able to provide this feedback to Microsoft that they are available and require actions on their end.

Thanks for your help, I've found this forum to be very valuable.

Regarding the last point: How do you enroll your devices? You should be able to enroll using different QR for example. One for BYOD and one for COPE which would mean no need to block something.

BYOD devices enrol using Intune Company Portal and COPE devices are enrolled using KME. We aren't using compliance to block enrolment, it's an enforcement for Conditional access after enrolment.

So, you use Samsung devices using Knox mobile enrollment (KME).

But in KME you can set per IMEI where devices should go (which enrollment config they should get) even via bulk import. I would recommend to give the different enrollments different targets (with different enrollment ID's) so you have a clean setup and only care about the IMEI's routed via KME to the right config instead of taking care of that somehow in the MDM.

Hey @Moombas,

You're 100% right, we use COWP and POWP internally as we manage more than just Android and it provides an easy way for everyone to understand what's being discussed but your right that BYOD and COPE are the names used by Android.

We use Microsoft Intune so we have some extra settings available for COPE compared to BYOD.

Using BYOD always provides you less possibilitys to manage than COPE devices 😉 Doesn't matter which MDM you use, just because of the use case.

Hi Lizzie,

It probably makes sense for you to make the topic and users can add to the feature requests as it's coming from a Google Community Manager then, possibly adding an update at the top of the page for collated issues so users can see what has already been added as a request etc.

Thanks.

@Lizzie Did you get round to creating this topic? I've a few other requests to add to the list.

Thanks.