How-To block Android Manufacturer(s) to access your managed apps
Updated: Jul 22, 2018
As Microsoft released an update to block iOS devices by model, Android devices can be blocked by manufacturer.
The following article describe the process to block Android device by manufacturer within Intune App Protection.
Access Intune App Protection > App Protection Policies and select/create a policy.
At the bottom of the different security controls, within the table, from the drop down list select "Device manufacturer(s)".
A new Device manufacturer(s) line is appearing.
Now, the logic behind this security feature is that you have to specifically enter the device manufacturer(s) you want to authorize accessing your managed app(s).
Furthermore, you have to select 2 actions; if the non-specified device manufacturer(s) will be:
Simply blocked to access the managed app(s).
Business data only will be wiped out from the managed app(s).
As an example, if you want to only authorize LG and Samsung manufacturers to access your company data, enter them as following - they will be blocked to access managed app(s):
Each value has to be separated by a semi-colon.
Now you can save the policy and you are done!
The complete list of Android Certified partners can be found here.
Once again, in addition of the iOS model based control for your intune app protection, this new security control offers more granularity and control about which Android device, based on manufacturer, can access your company data.