This problem can be caused by invalid details being used to populate ‘Intune app protection policies’ on Citrix Cloud Library. See the value ’12’ entered for ‘Require minimum iOS operating system’ in the following:
To resolve this issue, you must first manually delete some of the content which has been incorrectly created. This example will use ‘Microsoft Excel for iOS’ as the affected app which is in need of manual steps to remove. This example also assumes that Citrix Endpoint Management is in use for MDM functions. Once fully removed, the app can then be deployed again, gracefully, by using modified settings.
To manually remove the affected app and related settings:
– Log on to Citrix Cloud Library with an administrator account (requires Citrix Endpoint Management permissions and also Library permissions)
– Open the Library and delete the app, if it is found (the app will likely be missing from this screen, though it is best practice to delete the app from the Library if it is found in the Library)
– Log on to Microsoft Azure using a suitable account with administrative privileges (require permissions to manage applications)
– Find the following elements and manually delete them:
1) Under Intune App Protection > Apps > Delete the affected app if it is found
2) Under Intune App Protection Policies > Delete any entries for the app here also (if any are found)
3) Under Intune App Configuration Policies > Delete any entries here too (if any are found)
The steps listed above will remove the app and related settings from Intune only.
– Log on to Citrix Endpoint Management console (if in use) and delete the following entries
1) Under Configure > Apps > Delete the affected app if found
2) Under Configure > Delivery Groups > Delete the Delivery Group, which has been created for the app, if one is found
The steps listed above will fully remove the app from Microsoft Azure and also from Citrix Endpoint Management service. Only after the app has been removed, will attempts to publish it again succeed as intended.
When publishing the app again, take care to enter the configuration details in the same way as described at: https://docs.microsoft.com/en-us/intune/app-protection-policy-settings-ios.
For ‘iOS Minimum operating system’, the detail should be entered as ‘major dot minor’ (for example, enter 12.0, not 12).
In this example, entering ‘12.0’ for ‘Require minimum iOS operating system’ meets the syntax requirements for Intune MAM. Using this value does not result in ‘500 internal server error’ being received.