037: Conditional launch
Overview
Conditional Launch Settings for MAM in Microsoft Intune
Conditional Launch settings in Microsoft Intune's Mobile Application Management (MAM) policies help ensure that only compliant users can access corporate data via MAM protected apps. These settings validate various aspects of the app and device before allowing access to work or school account data.
The App Protection Policy Conditional Launch settings in Microsoft Intune for Android devices provide a way to enforce security requirements for accessing corporate applications. Here’s a detailed overview of the available options:
1. Max PIN Attempts
- Description: Set the maximum number of incorrect PIN attempts before access is blocked.
- Actions: You can choose to block access or wipe corporate data if the limit is exceeded.
2. Offline Grace Period
- Description: Define how long a user can be offline before access to managed apps is restricted.
- Actions: Options include blocking access or wiping corporate data after the grace period expires.
3. Jailbroken/Rooted Devices
- Description: Determine whether access is allowed on devices that are jailbroken or rooted.
- Actions: You can block access or wipe corporate data if a device is detected as compromised.
4. Minimum OS Version
- Description: Specify the minimum Android OS version required for accessing managed apps.
- Actions: If the device does not meet this requirement, you can block access or wipe data.
5. Maximum OS Version
- Description: Set a maximum OS version for accessing managed apps.
- Actions: Similar to the minimum version, you can block access or wipe data if the device exceeds this version.
6. Minimum App Version
- Description: Specify the minimum version of the app required for access.
- Actions: If the app version is outdated, you can block access or wipe data.