this post was submitted on 08 Jul 2024
308 points (95.0% liked)
Technology
59710 readers
5603 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
It’s not like Microsoft can’t send APKs over-the-air. Whatever the reason, it’s not because of Google Play.
Man, I'd hate to see an IT department you were in charge of.
I may be completely off the mark, but I'm pretty sure that Intune device management doesn't allow you to push arbitrary APKs out to managed Android devices. There would still also be the issue of getting the device managed to start with.
Microsoft isn't about to roll out their own version of the Play Store just to serve APKs to their Chinese employees.
They also are not going to try and manage rolling out updates to whatever cluster mess of different android devices those employees use, tracking update compliance, etc
Any other solution to this involves considerable extra work for their internal IT team(s). Easier to just force everyone needing access to corporate devices to use a single standard (and buy company phones for the few who raise a stink).
I think that intune has the same control over Android as it does iOS. One a device is enrolled, it can be wiped and sandboxed apps can be approved or denied. I'm not sure about pushing apps to phones, I think the end user had to download it still. Regardless, is not about Microsoft and it's control, it's about China and their control, and Apple gets on their knees and opens wide.
Intune and all other Mobile Device Management services depend on working with the provided APIs from the underlying OS.
For Android, this is the Android Management API and is part of the Google Services Framework, which is what's blocked in China. No GSF no management API either. MS could build their own, but that's a lot of time and money for "just" their China based employees
It's not just Google play that's blocked, the entirety of the Google Services Framework is blocked in China, including the security framework that is part of it.
MS would have to build their own bespoke Android security framework in addition. Which is a whole hell of a lot more than just "sending the APK over the air"
Yes, device management systems can push apps directly to devices, but the devices have to be managed first. So I think it probably is about the lack of Google Play.
One of the hardest parts of managing devices is getting them enrolled in device management in the first place. Microsoft uses the Microsoft Authenticator app to authenticate users as part of the enrollment process, so they know which employee is using the device and how to configure it. They need a reliable app store to distribute that app, and they need to do it before the device is managed. So usually they rely on Google Play.