We use Lastpass Enterprise, using federated Azure login. All works fine on PC's. Conditional Access in Azure is setup to ensure that users can only log into the SSO resources ( 250+) from InTune managed devices. It requires that authentication requests from from Chrome or Edge.
Lastpass has its own browser and does not send the authentication request via Edge or Chrome so therefore its getting blocked and users cannot log in.
LastPass say that they are aware of this. its not a fault with their product its more of a change they need to make to enable their product to work with AAD Conditional Access rules.
Has anyone found a way round this?
@PedroMartins any update on this? We're close to switching password vaults for our enterprise since using the product on a mobile device is an important requirement for us. I feel as if we've lost half the value of the product.
Our team has been working on this for iOS and Android, I hope to have more information in about a weeks time.
First of all I would like to thank for your message and continued interest in the status of this issue. I understand that it might seem like there is no progress but there has been quite a lot!
As mentioned previously, our teams are working hard to do an indepth analysis and a proposal for a solution with the least impact possible to our current customers and users. We have ongoing conversations internally and with Microsoft so that we can avoid not just this specific issue but others related to intune and conditional access in the future. The solution that we are currently discussing will attempt to avoid that and provide a solid Product plattform for these integrations. Stay tuned!