Microsoft Intune: New enrollment policies experience for iOS/iPadOS ADE

🚨 The Signal: Intune's iOS/iPadOS Automated Device Enrollment (ADE) policies are updated with a new UI and improved grouping. The Company Portal app will no longer auto-deploy, requiring explicit assignment, which impacts device setup and security posture.

The Impact

Intune administrators are affected by UI changes and the removal of automatic Company Portal deployment, increasing the risk of unmanaged devices if not addressed.

• Intune Admins: Must re-evaluate and assign Company Portal app to maintain device management.
• Security Teams: Risk of unmanaged iOS/iPadOS devices if Company Portal isn't explicitly deployed.
• End Users: May not receive Company Portal automatically, impacting access to corporate resources.
• Compliance Teams: Need to verify device management policies align with regulatory requirements.

The Action

1. Navigate to Microsoft Intune admin center > Devices > iOS/iPadOS > iOS/iPadOS enrollment.
2. Review existing Automated Device Enrollment profiles for iOS/iPadOS.
3. Ensure the Company Portal app is explicitly assigned to relevant user groups or device groups.
4. Communicate changes to end-users regarding Company Portal installation if not already deployed.

Domain: Intune · Impact: medium · Workload: Intune