Microsoft has retired Azure AD Graph APIs (ADAL APIs) in June 2023 and no longer supports any update to ADAL without breaking existing functionality.
SEP Mobile iOS Apps, Android App, and Console have already migrated to the supported Microsoft Authentication Library (MSAL) APIs. The Intune Partner Integration is also updated to remove the ADAL API permissions. It is recommended that administrators reset and grant consent again to apply the updated set of MSAL permissions.
SES Mobile deployments (ICDm management of iOS and / or Android devices protected by the SEP Mobile app)
Use the following steps to reset and grant consent to update the Microsoft Intune ADAL API Permissions:
Step 1: Reset Consent in Symantec Endpoint Security
To reset consent:
For more information, see Resetting consent.
Step 2: Remove ADAL API Permissions that were previously granted in Azure Active Directory
To remove the ADAL API permissions:
Note: While performing this step, it’s normal if you find that the ADAL API permissions are removed.
Step 3. Verify the API Permissions for the SEP Mobile Enterprise Applications are configured properly
Verify that the remaining API Permissions match the following sets of permissions: