iOS (MDM) - Steps to activate SCA in your Entra Tenant

This guide shows you all required steps to onboard SCA in your environment. This configuration uses SCA with Mobile Device Management (MDM) within Microsoft Intune. SCA can be downloaded from the App Store directly and installed on any iOS/iPadOS device.

Preconditions

For this Quick Guide, the AAD-Role “Global Administrator” or a comparable Administrator role in Microsoft Intune is required, depending on your RBAC-Concept.

You need an Entra-User with a proper license assigned. The test-device for SCA should be deployed to Intune and have the latest OS-version and Microsoft Authenticator installed.

You need additionally an Entra-Security Group with your test user as Member.

Step 1 -MDM- Register Enterprise App

Step 2 -MDM- Add App Protection Policy

Create an App Protection Policy or add SCA to existing policy.

Step 3 -MDM- Add Conditional Access Policy

Create a Conditional Access Policy for SCA.

Step 4 -MDM- Add App Configuration Policy

Create an App Configuration Policy for licensing.

In this Guide you can also find the Features of SCA and the difference in between Standard vs. Enterprise Editon.

In case you have further questions see our Frequently Asked Questions (FAQ). Your question is missing in the FAQ? Do not hesitate to contact us!

PreviousStep 4 -iMAM- Add App Configuration Policy NextStep 1 -iMDM- Register Enterprise App

Last updated 4 months ago

Was this helpful?

hashtagPreconditions

Preconditions