iOS App Protection Policy New Features
Microsoft recently added new features in the App Protection Policy for iOS in Intune. One of these features changes the use of screen capture possibility for iOS. In this article I will described what is changed and how this could reflect on your setup for the App Protection Policies for iOS.
Intune support for Apple AI features
The new features for the Intune App Protection policies are part of the support for Apple AI features, these came available in service release 2506 of Intune. There are now standalone settings for Genmojis, Writing tools and Screen capture. We are focussing on the last one: Screen capture.
Screen capture: Allow - Block
In a previous article I described the feature that iOS now supports to block screen capture (see link in documentation to article). This feature was enabled by default if a setting other that All apps for the Send org data to other apps was set.
With the service release 2506 we now have a standalone option to block screen capture. This setting is set to allow screen capture by default when you create a new App Protection Policy. If you want to block screen capture make sure you set the standalone feature to block. We also have the option the control the use of Genmojis and Writing tools.
User experience
From the user experience nothing is changed, when you set the functionality to block, screen capture is't allowed. If you want to allow a specific app to make use of screen capture, you can make a app configuration profile for this (see link in documentation)
Recap
With the standalone feature we now can control how you want to set the screen capture and other option for Apple AI features, even when the data protection options in send org data to other apps is set. Be aware of this change. Changing the setting can take a while for this is set on the users devices.