![(Updated) Microsoft Edge for Business: Cross-tenant support using Intune Mobile Application Management (MAM) [MC1255405]](https://mwpro.co.uk/wp-content/uploads/2025/06/pexels-googledeepmind-17497303-1024x683.webp "(Updated) Microsoft Edge for Business: Cross-tenant support using Intune Mobile Application Management (MAM) [MC1255405] 1")
Updated April 13, 2026: We have updated the timeline. Thank you for your patience.
[Introduction]
Microsoft Edge for Business now supports cross-tenant Intune Mobile Application Management (MAM) policies. This update allows organizations to apply Intune App Protection Policies to Edge work profiles even when the device is managed by another tenant. This capability helps protect corporate data in cross-tenant scenarios such as contractors, partners, or mergers, without requiring additional device enrollment or disrupting the end-user experience.
This message is associated with Microsoft 365 Roadmap ID 557187.
[When this will happen:]
- Public Preview (Worldwide): We will begin rolling out mid-February 2026 and expect to complete by early April 2026.
- General Availability (Worldwide): We will begin rolling out late April 2026 (previously early April) and expect to complete by end of April 2026 (previously mid-April).
[How this affects your organization:]
Who is affected:
- Organizations using Microsoft Edge for Business
- Admins configuring Intune App Protection Policies
- Users accessing corporate data on devices managed by another tenant
What will happen:
- This feature is off by default and opt-in only
- Intune MAM policies are enforced within the Edge work profile
- When enabled, protected downloads are redirected to OneDrive for Business instead of local storage, and leak controls for screenshots and DevTools activate when data protection settings are applied.
- This approach secures cross-tenant scenarios like contractors or mergers without requiring additional apps or disrupting the user experience.
- No impact to personal browsing or unmanaged profiles
[What you can do to prepare:]
No action is required before rollout.
- Review existing Intune App Protection Policies
- Determine whether to enable cross-tenant MAM for Edge
- Notify security and helpdesk teams as appropriate
- Update internal documentation if needed
Learn more: Cross-tenant support using Intune MAM | Microsoft Learn
[Compliance considerations:]
| Compliance area impacted | Explanation |
|---|---|
| Customer data storage | When protected downloads are enabled by the admin, downloads are redirected to OneDrive for Business instead of local storage, changing where corporate data is stored. |
| Processing and access of existing customer data | Corporate data accessed through Edge work profiles is processed under Intune App Protection Policies even when the device is managed by another tenant. |
| Tenant-to-tenant interaction | This change enables cross-tenant enforcement of Intune MAM policies, allowing one tenant to govern data protection on devices managed by another tenant. |
| Data Loss Prevention (Purview) | Intune MAM leak controls such as clipboard restrictions, screenshot protection, and DevTools blocking are enforced within the Edge work profile. |
| Admin controls | The capability is opt-in and controlled through Intune App Protection Policies, allowing admins to decide whether and how cross-tenant MAM enforcement applies. |
Source: Microsoft
<<< [MC1255405] Archive
Tooltip: View earlier revisions of this post
![Queues app on Microsoft Teams mobile [MC1279071]](https://mwpro.co.uk/wp-content/uploads/2024/08/pexels-apasaric-325185-150x150.webp "Queues app on Microsoft Teams mobile [MC1279071] 6")
