Common: Microsoft Intune app protection profile settings
Microsoft Intuneapp protection profile settings
These settings correspond to
Intuneapp protection policy settings. If you want more information about a setting, see the
Intuneapp protection profile setting
Enable interoperability between
Intuneand Dynamics apps
This setting specifies whether
BlackBerry Dynamicsapps can interact with
Intune-managed apps, such as
Microsoft Office 365apps, on the device.
To allow interoperability between
BlackBerry Dynamicsapps and
BlackBerry Enterprise BRIDGEmust be installed on users' devices.
For more information, see the
BlackBerry Enterprise BRIDGEAdministration Guide
Allow app to transfer data to other apps
This setting specifies the apps
Intune-managed apps can send data to.
Allow app to receive data from other apps
This setting specifies the apps that apps managed by the app protection policy can receive data from.
Prevent "Save as"
This setting specifies whether the "Save As" option is enabled for apps.
If you select this setting in an on-premises environment, you can allow using the "Save As" option to save work data only to one or more of the following locations:
Restrict cut, copy, and paste with other apps
This setting specifies how cut, copy, and paste operations can be used with the app.
Restrict web content to display in the managed browser
This setting specifies whether web links in apps must be opened in a browser managed by
Disable contact sync
This setting specifies whether the app can save contacts to the native Contacts app on the device.
This setting specifies whether the app can print data.
Require corporate credentials for access
This setting specifies whether users must use their organization credentials to access the app.
If this rule is selected, it takes precedence over requirements for a PIN or fingerprint.
Block managed apps from running on jailbroken or rooted devices
This setting specifies whether apps can run on jailbroken or rooted devices.
Recheck access requirements timeout period
This setting specifies, in minutes, how often the access requirements for the app are rechecked when the app is open.
Offline grace period
This setting specifies, in minutes, how often the access requirements for the app are rechecked when the device is offline.
Offline interval before app data is wiped
This setting specifies, in days, how long a device can be offline before app data is wiped from the device.
Require PIN for access
This setting specifies whether users must enter a PIN to access the app. If this option is selected, the user is prompted to provide a PIN the first time they run the app.
If the "Require corporate credentials for access" setting is selected, it takes precedence over this rule.
Number of attempts before PIN reset
This setting specifies the number of PIN entry attempts that can be made before the user must reset the PIN.
Allow simple PIN
This setting specifies whether users can use simple PIN sequences such as 1234 or 1111.
This setting specifies the minimum number of digits in the PIN.
Allow fingerprint instead of PIN
This setting specifies whether users can use a fingerprint instead of a PIN to access the app.
Disable app PIN when device PIN is managed
This setting specifies whether the app prompts for the PIN when the device is required to have a password.
If this setting is selected, the app PIN is not requested on
Androiddevices if the
UEMIT policy for the device requires a password. To disable the app PIN on
iOSdevices, the device PIN must be required by