This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(6.4, 38%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVA%3C/text%3E%3C/svg%3E)
We have set up an App Protection Policy for personal Android users. At first, they did not want to install the Company Portal app when we started using the policy.
After a few months, some Android users reported that they could not access Teams or Outlook on their devices. The issue was fixed after they installed the Company Portal app.
Some users who logged into the Company Portal are seeing this error: "Your device does not meet organization requirements to enroll and may not be able to gain access to some of the organization's resources. Contact your organization's support to learn more."
As far as I know, the Company Portal app is not required for App Protection Policies to work. M365 apps should still function even if this error appears in Company Portal, as we are not enrolling personal devices.
Any help or information on this would be appreciated.
Company portal app is still needed for APP to apply on Android. It just needs to be installed, not logged in to support MAM scenario.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 35%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EZM%3C/text%3E%3C/svg%3E)
@Vishnu Anand, Thanks for posting in Q&A.
For your issue, I have done some research, here are some information you can refer to.
Based on the official document, it says much of app protection functionality is built into the Company Portal app. Device enrollment isn't required even though the Company Portal app is always required. For Mobile Application Management (MAM), the end user just needs to have the Company Portal app installed on the device.
When using APP, the company portal app simply needs to be installed on Android devices and shouldn't be signed in to. If you try and sign in to it, it will try to enroll the device, which you don't want and will get the error message.
So, for unmanaged devices, there is no need to login Company portal to get the app protection policy, we just install it and then the app protection policy can apply automatically.
Hope above information can help you.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.