Default configuration not apply
Hello, We're having trouble assigning the default configuration when resellers add phones to our Zero-Touch account. We've successfully linked Intune to the Zero-Touch account. In Intune, there is a fully managed profile. I used this token to create a profile that works, no problem. However, when resellers add new devices, they don't retrieve our default configuration, which is called PROD_INTUNE_FullyManaged, but retrieve a default profile that we haven't configured. It's quite annoying to have to systematically reassign the correct default profile. Thank you for your help on this issue. *Post updated 27 May, 2025 - translated from French to English
Intune Managed Google Play Store Risk
Wondering if anyone has come across a way to restore an "app collection" in the Managed Google Play Store? I would like to be able to take a back up and restore the collection should it be deleted in error. On a shared tenant basis and having only 1 account for the MGPS is something we need to have steps in place for.
Issue with Copy/Paste Restriction in Intune MDM on Android Devices (Clipboard Editor Interaction)
Hi all, I’m currently experiencing an issue while setting up Intune MDM on Android devices related to restricting copy and paste to unmanaged apps. Specifically, the issue occurs when users copy text from the Teams app and try to paste within teams app. Here's what happens: After copying text, a message "Your organisation's data cannot be pasted here" immediately appears in the clipboard hud. The copied data seems blocked from being viewed, as the error message appears even before a paste attempt. Despite this, users can manually paste the copied content by long-pressing or selecting "Paste" from the text box. However, when trying to use the "paste from clipboard" feature, the warning message above is pasted instead of the copied content. We’ve set the Intune policy to allow copy/paste within managed apps, but the clipboard interaction seems to be problematic, especially with Gboard. It appears that Gboard, possibly due to Android 13 and 14’s Clipboard Editor, is treated as an unmanaged app, causing Intune’s data protection policies to block its access to the clipboard in a read-only state. Just to clarify: I want users to be able to copy and paste txt within managed apps only. So the allowed behavior of pasting with long press is fine, but I want to get rid of the block that we're getting. Here’s what we’ve tried: Added various exclusions to the Intune policy, including Gboard, Clipboard Editor, and other related apps (full list below), but the issue persists. Testing different configurations hasn’t led to a final solution, and there seems to be limited documentation specifically addressing this clipboard component in relation to Intune's data policies. We’ve escalated the issue internally but wanted to see if anyone in the community has encountered a similar problem or found a solution. Here’s the list of exclusions we’ve already added to the policy: Clipboard: com.android.clipboard SMS: com.google.android.apps.messaging SMS: com.android.mms SMS: com.samsung.android.messaging Native phone app: com.android.phone Google Play Store: com.android.vending Android system settings: com.android.providers.settings Android system settings: com.android.settings Google Maps: com.google.android.apps.maps Gboard: com.google.android.inputmethod.english Samsung: com.sec.android.inputmethod Gboard: com.google.android.inputmethod.latin Gboard: com.google.android.apps.inputmethod.hindi Gboard: com.google.android.inputmethod.pinyin Gboard: com.google.android.inputmethod.japanese Gboard: com.google.android.inputmethod.korean Gboard: com.google.android.apps.handwriting.ime Gboard: com.google.android.googlequicksearchbox Gboard: com.samsung.android.svoiceime Gboard: com.samsung.android.honeyboard Gboard: com.android.inputmethod.latin Teams app: com.microsoft.teams Any insights or suggestions would be greatly appreciated! This is my first time posting so apologies if this is the wrong space.Intune now showing tenant name on lockscreen
Hi everyone, As of some weeks, Intune started showing the tenant name on the lockscreen. Where it used to say "this device belongs to your organisation" it now says: " This device belongs to company name" . Since this is a big no for most of our customers, I was wondering if other people noticed this as well and maybe even found a solution for it. Microsoft support admitted that they changed this, but they will now help us getting it fixed or even giving us the option to enable or disable this. Showing the company name on a device can make a device more interesting to people who might find a lost or stolen device. Therefore, we never show company names or logo's on the lock screen. And most customers we work with expect that kind of behaviour. We currently have to project on hold because if this detail. (And its costing us extra business because they are not buying the hardware that comes with it 😅) I hope someone else is having more luck! In the meantime I'm escalating this via other companies in our group with better MS connections but those take some time. And if you haven't noticed this issue, please be aware of it. As far as we know, only Intune has done this. Knox, Workspace one and Mobile Iron are not showing this message. Samsung has replied that this is absolutly not right in their opinion. Its a big risk for companies.
Google Deleted Account that Links Managed Play Store
Hello all, We're facing an issue with our Intune/Managed Google Play connector. Google has deleted the account set up specifically to connect to our Managed Google Play instance in Intune. This has been an active link, with the last new device registered about 2 weeks ago and apps on devices being updated since then. We are currently unable to enroll new devices or add new apps. We are also unable to attempt to recover the account and have not been able to find a way to contact Google directly about the account issue. Barring being able to recover the account, are there ways for us to lessen the impact of creating a new account for the linkage? Or are we going to have to have all our Android BYOD users re-enroll their devices?
Microsoft Intune bind - Something went wrong - Your account wasn't created
I am trying to connect a Managed Google Play account to Intune so I can use Android enrollment. As of this article: Connect Intune account to managed Google Play account - Microsoft Intune | Microsoft Learn - As of August 2024, you can link your Microsoft Entra identity account to a Google account, instead of using an enterprise Gmail account. I am therefore trying the bind with the *@domain.onmicrosoft.com account, which is correctly identified as Microsoft account and offers to use it, but at the end I am getting: Something went wrong Your account wasn't created I have of course tried to clean browser cache, incognito window, etc. nothing works. If I try to login to admin.google.com Console, says that account does not exist. Thank you
Intune Enrollment QR Code - Two connection types
Hi, all I'm trying to modify our original enrollment token (Intune - Fully Managed Device QR Code) so that the device can enroll using mobile data OR any wifi network. I managed to add this to an existing QR code android.app.extra.PROVISIONING_USE_MOBILE_DATA":true, Unfortunately, using such a QR code on a phone that does not have mobile data transmission means that the enrollment process no longer asks for the WIFI network and ends in failure. To sum up, I want to create an enrollment code that works as follows: 1. Allow enrollment using mobile data. 2. If mobile data does not work - ask for any WIFI.Samsung S23 with Knox Mobile Enrollment fails to enroll in Intune
I was wondering if anyone else was having problems enrolling Samsung S23s using Samsung Knox Mobile Enrollment into MS Intune? I read the other thread about S23s and Zero-Touch failing, but that seems different than what we see. We get to a point where Chrome browses to https://play.google.com. The page says: Please click here to continue. No matter how many times you tap that link, nothing happens. Everything is just stuck. If you wait a long time, the phone just restarts and is in some weird state. Using the QR code works fine. Also, other models, like the Samsung S20, enroll just fine using Knox Mobile Enrollment into Intune. This is what it looks like. I opened a case with MS, but they say that is Google's page, and they can't control what it does.Intune - Google Managed Play issue cannot complete the bind
Hi Everyone, sitting with an issue on three O365 tenants at the at the moment that I have escalated to Microsoft. Was hoping that someone else experienced this issue as well or can point me in the right direction. After opening the connector to bind the EMM (Intune) to the google play store the I grant Microsoft permissions to send both user and device information to Google is greyed out. I can close and the window and then reopen it and I can then tick the box. After that the Launch Google to connect now Button becomes available and the windows that pops up asks me to sign in with my google account. I have created numerous accounts, personal, work and school and tested with them. After the login into the google account it does not continue with the EMM setup. the box displays "The Page has expired. To restart your registration, please reload the page from your EMM console. Only way past that is to log out of the Gmail Account and then log in again with the same issue "The page has expired......" I have tried the connection from different devices, browsers, incognito... on different networks and have even tried it from a device with a vanilla install, Windows 10/11 and nothing helps. I have created different accounts on Google, personal, work and school etc, and the same issue. After logging in I can click on the google play icon in the left upper side and it shows the apps in the play store. I have attached screen shots.
