User Profile
jarmo_akkanen
Level 2.0: Eclair
Joined 2 years ago
User Widgets
Contributions
Re: Smart watch notifications for work profile are being blocked by Android Management Policy
PrathikSooonerondraandyRakib Here is the configuration for the MS Intune. Unfortunately "CUSTOM" profile type is only available for BYOD and not for the other methods (COPE/COBO). Please see the image attached below. We opened the ticket to Microsoft to understand how to do this in COPE/COBO. Microsoft also ending support for CUSTOM for BYOD on April 2025. https://techcommunity.microsoft.com/blog/intunecustomersuccess/intune-ending-support-for-custom-profiles-for-personally-owned-work-profile-devi/4287414 Sign in to the Microsoft Intune admin center. Navigate to Devices > Configuration profiles > Create profile. Select Android Enterprise as the platform. Choose Corporate-owned with work profile and then Custom as the profile type. Add a new OMA-URI setting with the following details: Name: Enter a descriptive name. OMA-URI: ./Vendor/MSFT/WorkProfile/PersonalAppsThatCanReadWorkNotifications Data type: String Value: Enter the package names of the personal apps that should be allowed to read work notifications, separated by commas. Thanks JarmoRe: Widgets on COPE - MS Intune
I got the info from Microsoft yesterday: "At the moment it’s not possible but let me ask our Intune PG if there is anything on the Roadmap or if we need to raise a DCR or similar." I replied to them since we have had case opened to them about this 2 years for now. I think they will take this seriously now.... I'll keep you posted.. thanks JarmoRe: Widgets on COPE - MS Intune
Hi GMenzies jasonbayton Lizzie Moombas Finally there is a solution to get widgets available on COPE enrolled devices. To enable widgets to a specific application, you need to utilize this policy (addCrossProfileWidgetProvider), and make sure to add the package name of the application (for example com.microsoft.office.outlook) that you want to enable its widgets in the parameters. Please contact your MDM vendor (our case MS Intune) and raise a request to implement this API if they haven't done so already. https://developer.android.com/reference/android/app/admin/DevicePolicyManager#addCrossProfileWidgetProvider(android.content.ComponentName,%20java.lang.String) We will test this asap once we get the API implemented by Intune folks. Keep you posted.... Google engineers have tested it using testDPC and it works. Before: Configuration: After: thanks JarmoMicrosoft Company Portal App
Hi all, Seems that latest Company Portal version from Microsoft is having some issue. Problem description: Installation from Play Store is working but launching Company Portal app, it just freezes with logo on the screen. Never does anything, just freezing. We have case opened to Microsoft. Keep you all posted. Version 5.0.6170.0 Published 28.2.2024 Please test if you have BYOD method setup for your company. -jarmoRe: Samsung Secure Folder and DUAL messenger features - not available in COPE
Hi Moombas, Good point, we have not tried to provide secure folder as a work app because this app is only used for personal purposes. Employees want to store their private photos, files, banking apps etc... in secure folder. Anyway, thanks for the hint. We will test option to provide secure folder as work app. -jarmoSamsung Secure Folder and DUAL messenger features - not available in COPE
Dear community, hope everyone had lovely Christmas time! I just wanted to raise one issue you also might been run into. It's about Samsung Secure Folder and Dual Messenger features on COPE enrolled devices. Unfortunately these features are not available in COPE enrolled Samsung devices. We used to have all 10k fleet enrolled as BYOD and Secure Folder/Dual Messenger features were/are available. Now only personal owned devices are enrolled as BYOD and corporate owned devices are enrolled as COPE method. Unfortunately there is no setting available for us to make this work on the COPE enrolled devices on EMM side. According to Samsung, they have not updated Secure Folder software in 5 years and and don't necessarily expect we will get any update. The "error message" is very misleading: "Security policy prevents the installation of Secure Folder". Because there is no security policy setup in EMM (Microsoft Intune) for this feature. It's just pure Samsung thing. As mentioned... Samsung Secure Folder solution does not work on COPE enrolled Samsung devices but nice surprise is that on ThinkPhone (Motorola) , Secure Folder works even on COPE. This also implies that Samsung really could make it work if they wanted to put in the development effort, as it is not totally restricted by the Android Enterprise architecture of COPE since the ThinkPhone is able to do it. But so far Samsung does not seem to still support this app much. More on this topic from here: https://communities.vmware.com/t5/Workspace-ONE-Discussions/Android-Samsung-Impossible-to-enable-Dual-Messenger-feature-or/td-p/2260737 -jarmoRe: What OS rel. your Android fleet is running ?
Moombas App topic is good one and requires always big attention. We also need to make sure our internal apps are supporting and tested with the latest OS. Normally Microsoft etc.. work apps are fully compliant with new OS but sometimes we see issues on personal apps.
