Microsoft 365 Alert : Service Degradation – Microsoft Intune – Some users’ enrollment profile names are not populating as expected enrolling Apple devices – RESOLVED

01/06/2022 08:37:00 AM (BST)

Microsoft Reference : IT386941

NHSmail Reference : INC29305638 

Issue Status : RESOLVED

Issue Description : Users’ enrollment profile names are not populating as expected when enrolling Apple devices in Microsoft Intune.

More info : Payload (e.g. policies or apps) delivery to some newly-enrolled Apple devices may be missing. When targeting configurations involving Azure Active Directory (Azure AD) dynamic groups that use an Apple Device Enrollment Program (DEP) profile name in its query, newly enrolled devices aren’t being added to the dynamic group because the enrollment profile name for those devices is appearing as blank.

Scope of impact : Your organization was affected by this event, and users enrolling Apple devices with the specific configurations mentioned in the More Info section of this communications may have been impacted.

Final Update : 03/06/2022 08:54:00 AM – The deployment of the fix has completed, and Microsoft have confirmed via monitoring that impact has been remediated.

Root cause : A recently implemented configuration update, meant to improve service efficiency, disabled a feature used to obtain the enrollment profile names when enrolling new devices, resulting in impact.

Next steps : To help prevent similar impact in the future, Microsoft are further reviewing the configuration update which initially led to the disabled feature.