-
Notifications
You must be signed in to change notification settings - Fork 330
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Feature Request] [IOS] Xamarin Implement Conditional Access Grant Control “require app protection policy” #2894
Comments
I have the same issue, please advise |
I have the same issue, please advise us ! |
Any updates on this request? |
We are exploring options for the future of Xamarin (e.g. wrapping native libs etc.), as we are falling behind the MSAL Android and MSAL iOS teams. We are aware of this gap. @henrik-me in case he knows more |
@bgavrilMS Thanks for the update! |
@mafrank1 we do not have any timeline at the moment. we are re-evaluating previous approaches. We are going to spend the next 3 months to validate our newest approach leveraging a native implementation. The previous attempts for wrapping native implementations did prove to be to hard to build and maintain, We are cautiously optimistic that this new approach will be successful. |
IMHO it looks like a perfect match at the beginning... using Microsoft Visual Studio with C# and an MS Multiplatform Framework like Xamarin to build Mobile Apps using Microsoft SDK’s like “INTUNE” & MSAL” to access data in a Microsoft Cloud like AZURE… but unfortunately this does not work as expected, because the .net implementation of MSAL still does NOT YET work flawlessly together with the INTUNE SDK. Currently we have an iOS App for enterprise customers almost ready which we want to release ASAP. We came across this issue some month ago and tough this might be just a bug in one of the SDK’s which will be fixed soon by MS as we go along with our own development… And here we are now, waiting for a (IMHO) mandatory Feature of MSAL… and we even don’t have a timeline for that… Hopping for an timeline or even an outlook in this regard. Thanks, Tom |
Same issue here on Xamarin.iOS |
any updates on this ? |
We do not have an ETA we can communicate yet. I can say that we are working on this with high priority; this includes working with the Intune and Xamarin team on the e2e. This is not a feature which is enabled just by MSAL, the Intune SDK needs to support this as well. @tomzeni not sure who you got the information from that it's just about MSAL, can you please point to an issue or a person where you have that information from? For others reading, also want to remind that this is for App CA only, we support MDM via brokered auth today. Note: We are not tracking this as an App CA work item, but as a change in how we build our library for Xamarin. |
@henrik-me We got this information from a Jamie. S. from Microsoft via Email and he stated: "The limitation is not actually with the Intune SDK. It’s related to the MSAL library. The .Net MSAL library does not currently support this feature" |
Investigating where our difference in understanding is. @SameerK-MSFT to help provide an update here when we have it. |
@henrik-me Just one question regarding your comment.
Do you mean that the current Xamarin implementation for iOS is supporting the Conditional Access compliance state check? If yes, is there any code example or documentation available? |
@bgavrilMS @henrik-me |
Hi @tomzeni - we have started working on this. @SameerK-MSFT will update the thread as needed. It's too early to give an estimate, and a lot of people are going on holiday etc. Probably early next year. |
Tasks
|
@bgavrilMS @henrik-me |
We are actively working on it, trying to test out the Android changes now. Would you be interested in testing a preview on Android only? The iOS changes are more significant. If testing goes well I'd expect this to land around Feb. |
Hey @bgavrilMS thanks for offering me to test Android, but currently we have only an iOS App in development. Looking forward to the iOS Version. |
Is there a timeline on when the iOS changes will be ready? We are about to write a LOB app for iOS and were hoping to support both MDM and MAM. Thanks |
Created separate issue for Android - #3185 |
@SameerK-MSFT @bgavrilMS @henrik-me |
I'll let @SameerK-MSFT update the thread with details, especially around app provisioning. TrueMAM support for iOS has been merged we'll release it with MSAL 4.42, possibly today or early next week, depending on testing. |
ios support released in 4.42 |
@tomzeni As @bgavrilMS mentioned, this functionality now has been provided in release 4.42. Please take a look. Regarding how to use it, here is unofficial blog that explains it. https://sameer.blog/2022/02/25/secure-resources-using-xamarin-and-intune-mam-sdk-on-ios/ and a dev app demonstrating it can be found here: https://github.com/AzureAD/microsoft-authentication-library-for-dotnet/tree/master/tests/devapps/Intune-xamarin-ios |
Hey @SameerK-MSFT @bgavrilMS and Team, my first tests with 4.42 were all successful. |
Is your feature request related to a problem? Please describe.
We are using MSAL and Intune Xamarin library in our app. Both integrations are working in most cases, but we want to use the Conditional Access Grant Control “require app protection policy”. Based on the feedback of the Intune team the MSAL library does not provide this feature yet.
Describe the solution you'd like
Please integrate the Conditional Access Grant Control “require app protection policy” feature in the MSAL library and provide an release timeline.
Estimate time to code complete: 10 days.
The text was updated successfully, but these errors were encountered: