Intune: Conditional Access and Microsoft Teams App

If you are using a conditional access policy to block/allow specific apps, you may find yourself unable to sign into Microsoft Teams. Users that fail compliance will see the above error message.

You cannot access this right now. Your sign-in was successful but does not meet the criteria to access this resource. For example, you might be signing in from a browser, app, or location that is restricted by your admin.

Unfortunately this can happen even if Microsoft Teams is explicitly allowed (or not blocked). What should be done?

Well, the thing about Microsoft Teams is that it requires other apps to be open and allowed as well. Specifically:

  • Skype for Business Online
  • Exchange Online
  • Sharepoint Online

So make sure that all these services are allowed and not blocked, and you should be able to get past compliance to authenticate into Microsoft Teams.

Intune: Removing Company Data from an Android Device

What does it look like when you remove company data from an Android for Work device, from the perspective of an Intune admin?

  1. Find the device. Confirm that the device you are looking at is the right one. You can filter by IMEI.
  2. Click the device.
  3. Click Remove Company Data.
  4. Confirm. Click Yes.
  5. You will see a confirmation.
  6. Within one minute or so you should the Android for Work container will get deleted from the target device.
  7. The device will get automatically deleted from Intune.