Close Menu
Peter Klapwijk – In The Cloud 24-7Peter Klapwijk – In The Cloud 24-7
    Facebook X (Twitter) Instagram
    Peter Klapwijk – In The Cloud 24-7Peter Klapwijk – In The Cloud 24-7
    • Home
    • Intune
    • Windows
      • Modern Workplace
    • macOS
    • Android
    • iOS
    • Automation
      • Logic Apps
      • Intune Monitoring
      • GitHub
    • Security
      • Passwordless
      • Security
    • Speaking
    • About me
    Peter Klapwijk – In The Cloud 24-7Peter Klapwijk – In The Cloud 24-7
    Home»Android»Automatically configure Outlook contact sync to the native contacts app with Microsoft Intune
    Android

    Automatically configure Outlook contact sync to the native contacts app with Microsoft Intune

    Peter KlapwijkBy Peter KlapwijkJuly 6, 2020Updated:July 6, 2020113 Mins Read

    To keep corporate (email) data safe a lot of companies force their users to use Microsoft Outlook mobile by applying Conditional Access policies and App Protection Policies. One of the things that don`t work out of the box with Outlook, compared to using the native mail client, is contacts are not directly available in the native contacts app and therefore users don`t see who is calling them.

    To make the life of the end-user a little easier, we can pre-configure Outlook to save the contacts to the native contacts app. This can be done by deploying an App Configuration Policy with Microsoft Intune to the end-users device (Outlook). In this policy, we also have the option to control which items are saved to the local device and which are not allowed to be saved. You might for example only want to allow saving the name and phone numbers of a contact and block everything else.

    If you have indeed applied an App Protection Policy to the users devices and want to allow saving contacts to the local device, make sure this is allowed in the App Protection Policy before moving on with the other steps.
    Set Sync app with native contacts app to Yes.

    If this setting is in-place, let`s configure the App Configuration Policy for Outlook mobile.

    Create App configuration policy

    In this example, I create the App configuration policy for Outlook mobile running on Android and iOS. I only want to allow syncing the contact fields related to the name and some related to phone numbers.

    • Sign-in to the Endpoint Manager admin center
    • Browse to Apps – App configuration policies
    • Click + Add
    • Choose Managed apps
    • Give the profile a Name
    • Enter a Description (Optional)
    • Click Select public apps
    • Search for Outlook
    • Select Outlook (twice)
    • Click Select

    Back in the previous screen click Next.

    • Open Outlook configuration settings
    • Set Save contacts to Yes
    • Choose your preferred setting for Allow user to change setting
    • Scroll down to the Sync contacts fields to native contacts app configuration
    • For every contact field set the preferred option of your choice
    • Click Next

    Finalize the setup wizard by assigning the policy to a security group.

    End-user experience

    Let`s have a look at the end-user experience. I have used an Android device to create this blog.

    As you can see for this contact, I have filled in some additional information besides the name and mobile number. If the policy is set correctly, the Email and notes fields are not synced to my Android device.

    As soon as the policy is successfully applied to Outlook, a pop-up is shown Outlook needs access to contacts to sync them. Click on the pop-up to give the requested permissions to Outlook.

    If we have a look at the settings in Outlook, here also a message is shown Outlook needs access to contacts in Android.

    Depending on if you allow the user to change the sync contacts settings or not, the user is allowed to switch off contact sync.
    In this case, also information is shown that not all contact sections are saved.

    If you don`t allow changing the contact sync settings, the informational message isn`t shown and the button is greyed out like below.

    If we take a look at the synced contact, indeed only the name and phone number are synced to the contacts app. All other information is not synced to the device.

    That`s it for this post. I hope you find it informative.

    Happy testing!

    Android Intune iOS MEM Microsoft 365 Microsoft Endpoint Manager Outlook Security
    Share. Facebook Twitter LinkedIn Email WhatsApp
    Peter Klapwijk
    • Website
    • X (Twitter)
    • LinkedIn

    Peter is a Security (Intune) MVP since 2020 and is working as Modern Workplace Engineer at Wortell in The Netherlands. He has more than 15 years of experience in IT, with a strong focus on Microsoft technologies like Microsoft Intune, Windows, and (low-code) automation.

    Related Posts

    How to block mobile apps like TikTok with Microsoft Intune

    July 18, 2020

    Secure personal mobile devices with Microsoft Intune and Lookout

    November 9, 2019

    Force Outlook on iOS and Android to access the Exchange Online mailbox

    March 29, 2019
    View 11 Comments

    11 Comments

    1. Michael on July 9, 2020 20:50

      Would you really sync all corp contacts to the native contact app? What about any social media app on the private device that has also access to the native contact app? It will grab any contact and will probably sync them to the cloud. Regarding any privacy policy this is not what you really want, or am I wrong?

      Reply
      • Dexaler on July 14, 2020 16:45

        I think a distinction needs to be made between contacts in Outlook and the Global Address Book. Typically the GAL hold all the corporate contacts. But, the Outlook contacts can be anything else, like vendors for example. If someone were to copy a corporate GAL contact into their Outlook contacts then for sure what you say would happen – social media apps which have been granted access to the native contact app would pull potentially sensitive contact info. Even in the case of just pulling first name, last name, phone number could be a privacy concern. This would be even more true of course if the contacts list had customer’s contact info. Which, to me, would be the point – have the customer as a contact so when they call you see that it’s them calling.

        Reply
    2. Mark Zimmermann on July 26, 2020 20:18

      Do you need your company contacts offline, secure and with number resolution for incoming calls? Then this app is a good addition to the #Outlook app : https://apps.apple.com/de/app/securecontact-x-business/id1450074955

      Reply
    3. Gregor on February 10, 2021 18:01

      Amazing article, just when I thought it’s going to save all my problems.. it didn’t. Configured exactly as it should be, there was even a notification about contact sync and I allowed it…

      But unfortunately, contacts to not get sync into native contacts app and they remain there. Any other idea what could it be? Thanks, G

      Reply
      • Peter Klapwijk on February 19, 2021 20:57

        That`s pretty strange. These settings should do the trick. If you`re absolutely sure the policy is applied and it doesn`t work on multiple devices, probably nothing left other than opening a support case.

        Reply
    4. Bert on May 25, 2021 16:06

      Hi Peter I am having the same problem. My company did configure Outlook (in the Work Profile) to Sync contacts, however they are not available in the Private Profile Contacts or Native Dialer app.
      But it gets even stranger… so my native Dialer/Contacts app (Private Profile) doesn’t show the contacts, however if I perform a search/lookup I can actually see results that come straigt from the Work Profile Contact app ….

      So it looks like there is some underwater connection between the Work and Private Profile Contacts Apps, however the Work Contacts are not pushed to the Private Contacts app so they can be displayed as Contacts.

      this is really frustrating …

      Reply
      • Robby van der Zande on June 5, 2023 15:37

        Guess I found the solution. Standard Android is showing the ‘personal’ dialer and contact app. I’ve added the phone and contacts app from Google as a ‘managed google app.’ Because the work and personal profile are seperated they cannot share workdata. Now they can because workdata (Outlook) is shared with contacts (managed app) and dialer (also managed app). Hope my post makes sense. Posting this in various places since I see a lot of people have issue.

        Reply
    5. inigo on September 5, 2022 20:09

      Hi,
      We have deployd IOS Outlook, to alow the Iphone Contact app show the contacts, but something we have a issue because it’s not working.

      Need to be an APP manage, or need to be as a device manage?
      Also, the assigment grup, need to be an user group, or Debvice group?

      Thanks

      Reply
    6. Frederic on October 17, 2022 15:01

      Hello,

      If I allow “Outlook contact sync to the native contacts app” with an App Protection policy, does the Outlook contacts gets removed on the native app (iOS) when I do a “Selective Wipe”? Thank you!

      Reply
    7. Wing on April 9, 2024 16:04

      Hi, same problem here. I got it to work on our CO Fully Managed devices however on the phones with a work profile the contacts are not visible in the native apps within the personal profile. Even with the App protection policy enabled. If i open the native dialer app and search i can find the contacts but they are not listed. Anyone found a solution?

      Reply
    8. Torben on March 24, 2025 13:31

      Hi, i’m interested in a similar problem. I would save a phone number from an incoming call to the business contacts. But that’s blocked and i don’t find the right solution.

      Have you any idea?

      Reply
    Leave A Reply Cancel Reply

    Peter Klapwijk

    Hi! Welcome to my blog post.
    I hope you enjoy reading my articles.

    Hit the About Me button to get in contact with me or leave a comment.

    Awards
    Sponsor
    Latest Posts

    Update Windows Defender during Windows Autopilot enrollments

    May 16, 2025

    Hide the “Turn on an ad privacy feature” pop-up in Chrome with Microsoft Intune

    April 19, 2025

    How to set Google as default search provider with Microsoft Intune

    April 18, 2025

    Using Windows Autopilot device preparation with Windows 365 Frontline shared cloud PCs

    April 13, 2025
    follow me
    • Twitter 4.8K
    • LinkedIn 6.1K
    • YouTube
    • Bluesky 1.5K
    Tags
    Administrative Templates Android Automation Autopilot Azure Azure AD Browser Conditional Access Edge EMS Exchange Online Feitian FIDO2 Flow Google Chrome Graph Graph API Identity Management Intune Intune Monitoring iOS KIOSK Logic Apps macOS MEM MEMMonitoring Microsoft 365 Microsoft Edge Microsoft Endpoint Manager Modern Workplace Office 365 OneDrive for Business Outlook Passwordless PowerApps Power Automate Security SharePoint Online Teams Windows Windows 10 Windows10 Windows 11 Windows Autopilot Windows Update
    Copy right

    This information is provided “AS IS” with no warranties, confers no rights and is not supported by the authors, or In The Cloud 24-7.

     

    Copyright © 2025 by In The Cloud 24-7/ Peter Klapwijk. All rights reserved, No part of the information on this web site may be reproduced or posted in any form or by any means without the prior written permission of the publisher.

    Shorthand; Don’t pass off my work as yours, it’s not nice.

    Recent Comments
    • Adam on Get notified on expiring Azure App Registration client secrets
    • Peter Klapwijk on Update Windows Defender during Windows Autopilot enrollments
    • Rob van de Ven on Add a certificate to the Trusted Publishers with Intune without reporting errors
    • Carl on Update Windows Defender during Windows Autopilot enrollments
    • Peter Klapwijk on The next step in a passwordless Windows experience
    most popular

    Application installation issues; Download pending

    October 1, 2024

    Restrict which users can logon into a Windows 10 device with Microsoft Intune

    April 11, 2020

    How to change the Windows 11 language with Intune

    November 11, 2022

    Update Microsoft Edge during Windows Autopilot enrollments

    July 9, 2024
    Peter Klapwijk – In The Cloud 24-7
    X (Twitter) LinkedIn YouTube RSS Bluesky
    © 2025 ThemeSphere. Designed by ThemeSphere.

    Type above and press Enter to search. Press Esc to cancel.

    Manage Cookie Consent
    To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
    Functional Always active
    The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
    Preferences
    The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
    Statistics
    The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
    Marketing
    The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
    Manage options Manage services Manage {vendor_count} vendors Read more about these purposes
    View preferences
    {title} {title} {title}