Outlook for iOS – Unsecure?

What is the Buzz?

Microsoft rebrands their purchase of Acompli to Outlook and relaunches it for iOS and in preview for Android.

Alot of ITpros and Sysadmins have banned the App from their MDM controlled Devices, because it has two potential security risks.

1. It integrates with cloud services like OneDrive and Dropbox, for consumers and it makes it very easy for Our precious users to store business attachments to a consumer service.

2. In order to have Push Notifications when the App is working in the background for more then 10 minutes, we synchronize our credentials to a Microsoft Cloud Service. This Cloud Service does Active-Sync Connectivity to our Exchange Service and reports back to the Outlook App creating a Notification for us.

This is how Apple makes all Third party Developers do it, but the Cloud Service isn’t part of a business Product like Azure Active Directory and Office 365. There is only a best effort to this Cloud Service, so normally we wouldn’t consider it good enough for storing Our credentials.

But the Application isn’t any better then what we can achieve natively on iOS or Android at the moment, so there is no need to use it at this point.

Wonder if the OWA for iOS and Android has the same Security risks?

Leave a Reply


I am Roy Apalnes, a Microsoft Cloud Evangelist working av Sopra Steria. Main focus in Microsoft Security and Endpoint Management, with a bigger picture in mind.

Featured Posts