Knox 3.11, SDK restrictions for Android 15
Hello everyone , Does anyone use knox sdk restricted method ? We have an app that has a driving mode and the apps is used for security purpose . Of course the app use know high restrictions feature like disable apps or enable/disable voice restrictions . Our xcover on android 15 , we have a message error that's say the app is not running in device owner mode : SecurityException: Caller is not DO or PO or KPU. According to Samsung post here , our app in android 15 will loose many restrictions we use . My question is how we can update to android 15 ? Our device is managed by Ivanti . The device owner of our device is the ivanti app and thus it can use knox sdk restrictions . I am pretty sure we can't have 2 apps being device owner if i am not wrong but i didn't find the proof yet . Sounds like the solution is to manage our device with only our EMM which doesn't satisfy our needs . Does anyone have any other idea ? It's a specific case actually .Android for digital signage?
Does anyone have any experience using Android for digital signage? We currently use Dell Optiplexes running Windows in kiosk mode with the Poppulo (formerly known as Four Winds Interactive) app but the machines are: Costly Overpowered for what we need Purchased on a 4-year lease cycle Pain in the butt to manage Windows kiosk mode Poppulo also provides an Android app to run the digital signage but I am struggling to find many options for hardware. They suggest using a modified Amazon Fire Stick but in our testing they don't work great. I also came across the Elo Backpack 4 for Android which looks fantastic and just what we need except the you have to buy a subscription to get only 4 years of OS and security updates. We are also looking into running Android on a Raspberry Pi but that would have to be open source and might be kinda janky. Plus, no guaranteed security updates. I thought it would be easier to find just a stick or a box with Android on it but that seems to be proving difficult. It's especially difficult to find one that supports Android Enterprise. Wondering what other orgs doing for digital signage. Thanks!
Barcode setup without ENROLLMENT_TOKEN
Hi We are preparing to enroll over 600 Zebra and Honeywell barcode scanners into Microsoft Intune. These devices are distributed across more than 250 locations and span over 35 distinct configuration profiles. To ensure a smooth rollout, especially for our non-technical users, we aim to automate the enrollment process as much as possible—minimizing manual input and reducing the risk of user errors, including Wi-Fi setup. Our intended workflow is for users to simply scan a QR code at the initial "Hi there" screen. This QR code should contain the necessary Wi-Fi configuration and trigger device provisioning via the Google Zero-Touch portal, bypassing the setup wizard entirely. However, when we generate a QR code using the following JSON configuration, the Wi-Fi settings are not being applied as expected. After the QR code is scanned, the device proceeds to the Wi-Fi setup screen, where users are required to manually enter the network configuration. According to Google’s documentation, the EXTRA_ENROLLMENT_TOKEN is optional. Is it possible to fully automate this step without including the token, or is it required in practice for the Wi-Fi configuration to be applied correctly? Any help would be much appreciated—thank you! { "android.app.extra.PROVISIONING_DEVICE_ADMIN_COMPONENT_NAME": "com.google.android.apps.work.clouddpc/.receivers.CloudDeviceAdminReceiver", "android.app.extra.PROVISIONING_DEVICE_ADMIN_SIGNATURE_CHECKSUM": "I5YvS0O5hXY46mb01BlRjq4oJJGs2kuUcHvVkAPEXlg", "android.app.extra.PROVISIONING_DEVICE_ADMIN_PACKAGE_DOWNLOAD_LOCATION": "https://play.google.com/managed/downloadManagingApp?identifier=setup", "android.app.extra.PROVISIONING_ADMIN_EXTRAS_BUNDLE": { "android.app.extra.EXTRA_PROVISIONING_WIFI_SSID": "**SSID**", "android.app.extra.EXTRA_PROVISIONING_WIFI_PASSWORD": "**PASSWORD**", "android.app.extra.PROVISIONING_WIFI_SECURITY_TYPE": "WPA", "com.google.android.apps.work.clouddpc.extra.EXTRA_PROVISIONING_SKIP_USER_CONSENT": true, "com.google.android.apps.work.clouddpc.extra.EXTRA_PROVISIONING_SKIP_USER_SETUP": true, "com.google.android.apps.work.clouddpc.extra.EXTRA_PROVISIONING_SKIP_ACCOUNT_SETUP": true, "com.google.android.apps.work.clouddpc.extra.PROVISIONING_SKIP_EDUCATION_SCREENS": true } }
Android 15 - Cannot set default password app
We use Microsoft Intune to manage devices. For the devices which have upgraded to Android 15, the end users can no longer select Microsoft Authenticator as their default application for auto filling passwords. I cannot find any settings in Intune to allow it. All devices are fully managed corporate owned devices. The devices are all Google Pixel 8 or 8a devices. Is this a bug in 15 or am I missing something?
Application report not getting collected on Xiaomi mix fold devices
We have couple of users who have the Xiaomi Fold device and in the application report section of status report notifications we are only getting the android device policy app. None of the other applications are getting returned. Is this a known issue? How can we debug the issue? I was not able to see anything obvious in the device logs. We are getting the full application report for the other devices.
FYI - Chrome is dropping support for A8 and A9 in August 2025
138 will be the last version of Chrome that will support both A8 and A9 according to this recent announcement. https://support.google.com/chrome/thread/352616098/sunsetting-chrome-support-for-android-8-0-oreo-and-android-9-0-pie?hl=en There are very small populations of these devices left in the wild but I personally still support quite a number of them. The entire Atlas family from Zebra including the TC51, MC3300, and VC80x devices all max out on A8 with no higher upgrades available. This likely will lead to forced upgrades to those devices, especially given how many modern apps are hybrid web apps dependent on the WebView and/or Chrome (Chrome is the System WebView implementation on A8).How do we see apps whose work profile consumes battery?
Hello, We have Android phones included in MDM. I want to see the apps that drain the battery. The personal profile shows the apps that drain the battery. The applications in the job profile are not showing up. Is there any way to view this in detail?
Zero Touch Portal - Error Message
Hi Team, I have created a new configuration item and linked it to Microsoft Intune token. Then I have decided to remove the Intune token configuration before removing the configuration file from Zero touch (which I dont think it should matter). Then I went to remove the configuration item from Zero touch and was getting a strange error message, see below. Now I'm left with a configuration item in Zero touch that I can't remove. Can someone please help or reach out, that would be great. Also, let me know if there is anything else you require from my end.
InTune Android connection "unexpected error"
Trying to follow this doc. We want to use InTune to control our corporate owned Android devices. https://learn.microsoft.com/en-us/intune/intune-service/enrollment/connect-intune-android-enterprise At step 7, it has me click "Launch Google to connect now" and I just get "Unexpected error. Please wait for some time and try again." Tried multiple browsers, incognito, multiple accounts, etc. All same results. We have a licensed Google Workspace tenant with Enterprise Standard licenses. The account has access to all Google apps/services. My account is both an Azure Global Admin and a Google Workspace Super Admin/Owner. Sat on chat with Workspace/Android Enterprise support trying all the obvious things for 3 hours with no resolution. They finally gave up and just said "call Microsoft" which doesn't help, it's literally an error thrown by enterprise.google.com. How do I get past this error to configure the connection? (This post was edited to remove personal information, in compliance with our guidelines)
