Work Profile Password Complexity affects Personal Space device password that unlocks the device : Intune
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-28-2023 02:27 AM
Hi,
Personally owned devices with a work profile running on Android 12 and above devices today, we are over controlling their personal space by demanding complex password setup.
there are two passwords affected by this Password complexity setting in Intune :
- The device password that unlocks the device
- The work profile password that allows users to access the work profile
Even we choose medium complexity, user are getting a notification to change the device password to complex. this is not feasible for the BYOD scenario. Yes, i can understand security perspective avoid simple passcode, but policy shouldn't force for lengthy and complex passwords. how you configured this password complexity your environment ?.
- Labels:
-
Devices
-
Management
-
Security
-
Work Profile
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-28-2023 02:45 AM
Hi Govi, Why setting device password policy and not only work profile policy?
Then the user can set his own password for the device but the work part is still covered by your policy.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-28-2023 08:50 PM
Yes, our target is also the same. But Microsoft Intune doesn't allow this and explained here "https://learn.microsoft.com/en-us/mem/intune/configuration/device-restrictions-android-enterprise-pe... -> with Android 12 and above -> Choosing Password Complexity as Medium/High affects both the Device / Work password to meet the complexity requirements. i feel its overcontrolling the end users personal space when we activate with AE.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-28-2023 11:10 PM
Hi govi,
your link doesn't work for me.
The information i found is: https://learn.microsoft.com/en-us/mem/intune/protect/compliance-policy-create-android-for-work
And there's this:
"Newly enrolled Android Enterprise 12+ devices will automatically use the Password complexity setting with the High complexity. So if you don't want a High password complexity, then create a new policy for Android Enterprise 12+ devices and configure the Password complexity setting."
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-28-2023 11:36 PM
sorry, but this the working link : https://learn.microsoft.com/en-us/mem/intune/configuration/device-restrictions-android-enterprise-pe... . Yes, even we reconfigured with Password Complexity as medium its demanding the Device level password change which we don't want.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-03-2023 11:50 PM
any new suggestion or views for the above requirement ?.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-04-2023 12:27 AM
If you believe this is not working as explained by the Intune documentation, you should raise a support ticket with the Intune support team they will be able to debug this and escalate if needed.
Sorry,
Jeremy
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-04-2023 12:54 AM
thanks for your hint. Yes, we are doing that too and waiting for their update. here we posted to know more about expert view on this topic and reported issue pattern.
- Securing your Business: Checklist for Android device offboarding in Tips & guides
- Last resort? in General discussions
- Using passkeys on an Android Enterprise managed device for apps in the work profile in General discussions
- Work Profile Password Complexity affects Personal Space device password that unlocks the device : Intune in General discussions