ms-intune-app-sdk-ios icon indicating copy to clipboard operation
ms-intune-app-sdk-ios copied to clipboard

Published 20 hours ago verified publisher icon msintuneappsdk

Intune iOS RemediateCompliance Error

Open decisionslab2 opened this issue 2 years ago • 7 comments

Describe the bug: Can't login further even after remediating Compliance and applying the policy

The Flow: When the App protection policy is enabled we get the following exception

image

later we need to call the remediateCompliance method as given in the documentation. Once done we get the following U.I

image

image

Then later after entering the PIN and try to login Again we are asked to signIn again in inTune SDK and we get stuck here

image

The logs Cleary states that we are blocked by the inTune SDK application

image

Expected behaviour: To login successfully after the Policy is applied and remediating Compliance is done

Video: https://figg-my.sharepoint.com/:v:/g/personal/arshad_nabi_meetingdecisions_com/EXUkF73oNetBhvIv3EoG5hQBIsECo9Z6WsBhxZ-Vk47XNg?e=OjPJcU

Smartphone (please complete the following information):

  • Device: Any iOS Device,

  • OS: iOS Version 13.0 and Higher

  • What version of the Intune SDK are you using? Are you using the latest version? Latest version

  • What platform is your app based in (native, Xamarin based, Cordova, etc)? Native

  • For errors during build, does the app build without Intune SDK integration? App builds without error

  • For errors post build, does the app launch without being Intune SDK integrated? NO

  • Do you see a trend with it only being reproduced on a specific device? NO

decisionslab2 avatar Aug 03 '22 08:08 decisionslab2

Info: We have authenticator app installed in the device and the device is registered in Azure AD as well.

decisionslab2 avatar Aug 03 '22 17:08 decisionslab2

@decisionslab2 What do you have in LSApplicationQueriesSchemes in your Info.plist?

gastaffo avatar Aug 04 '22 19:08 gastaffo

yes @gastaffo. We do have LSApplicationQueriesSchemes in our info.plist

decisionslab2 avatar Aug 08 '22 17:08 decisionslab2

@decisionslab2 May I know which API are you calling for the following?

Then later after entering the PIN and try to login Again we are asked to signIn again in inTune SDK and we get stuck here

jasoncoolmax avatar Aug 08 '22 21:08 jasoncoolmax

We are calling the MSAl login acquireToken function. MSALPublicClientApplication.acquireToken(with: parameters, completionBlock: completionBlock)

decisionslab2 avatar Aug 10 '22 05:08 decisionslab2

@decisionslab2 Could you please share the following, such that i can take a deeper look.

Do a repro, then

  • Open Authenticator -> Hamburger menu on top left corner -> Send Feedback -> Having trouble? -> fill in any info needed -> Send -> give us the incident id
  • Collect your app's MSAL logs (If you haven't setup the logging yet, see here for details)

jasoncoolmax avatar Aug 11 '22 06:08 jasoncoolmax

@jasoncoolmax Incident ID:

image

Logs: MSAL Logs.txt

Thank you

decisionslab2 avatar Aug 18 '22 09:08 decisionslab2

The issue got resolved. The problem was with Delegated Permissions. once applied fresh it works fine. https://docs.microsoft.com/en-us/mem/intune/developer/app-sdk-get-started#give-your-app-access-to-the-intune-app-protection-service-optional

decisionslab2 avatar Sep 05 '22 12:09 decisionslab2