We use Lastpass Enterprise, using federated Azure login. All works fine on PC's. Conditional Access in Azure is setup to ensure that users can only log into the SSO resources ( 250+) from InTune managed devices. It requires that authentication requests from from Chrome or Edge.
Lastpass has its own browser and does not send the authentication request via Edge or Chrome so therefore its getting blocked and users cannot log in.
LastPass say that they are aware of this. its not a fault with their product its more of a change they need to make to enable their product to work with AAD Conditional Access rules.
Has anyone found a way round this?
Did you ever resolve this issue? We're having a similar problem.
Using Microsoft MDM to manage the LastPass application, however, when someone tries to log in on android, it'll redirect them to enroll now even though their devices are already enrolled, and when they click enroll, it'll go to an error page.
For iPhone, they'll have the same issue you mentioned.
unfortunately not resolved yet and we have been putting a lot of pressure on LogMeIn to resolve it. we have case ref 14278431 and I highly recommend that you speak to your account manager and let them know that you are seeing the same issue. The more people that get onto them about this, the faster they will resolve.
this was the last update:
Timeline: This issue was first reported to support in late November 2020. Our team is working on this with highest priority. Our current ETA is mid-January 2021.
Also found this archived thread about the issue, which could be similar to the issues we're facing:
Adobe Acrobat and Laspass both asking to enroll, but already installed in Work Profile : Intune (red...