Itune supports Brokered Auth through the Microsoft Authentication Library (MSAL), enabling users to authenticate with Microsoft Authenticator or the Intune Company Portal app.
Enabling Brokered authentication starts in Azure in the Azure AD dashboard, and must be specifically turned on as an authentication option.
To find this page in Azure, navigate to Azure AD -> Security -> Authentication methods -> Policies.
Next, brokered auth brokered auth must be enabled locally in your MSAL config. Add this line:
To the MSAL auth configuration JSON.
First, ensure the correct
<queries> have been added to the
AndroidManifest.xml by following the Android Installation instructions.