I used airwatch as my MDM and finished MS AAD integration. I followed the document to set SSO extension with MS authenticator.(https://learn.microsoft.com/en-us/azure/active-directory/develop/apple-sso-plugin) After the rest of steps. The profile was installed and it can be see in apple setting. However, when I tried to login MS Teams, it failed. After investigation from MS, they found the device log :
<SOExtension:0x10050b2b0, bundleID=com.microsoft.azureauthenticator.ssoextension, path=/var/contaioners/Bundle/Application/xxxxxxx/Microsoft Authenticator.app/PlugIns/AuthenticatorSSOExtension.appex, associatedDomains={}

The associatedDomains was empty which caused the error and fail to do log in process.

This cannot be reproduced everytime. We follow the same steps and see normal device log is supposed to be:

<SOExtension:0x10050b2b0, bundleID=com.microsoft.azureauthenticator.ssoextension, path=/var/contaioners/Bundle/Application/xxxxxxx/Microsoft Authenticator.app/PlugIns/AuthenticatorSSOExtension.appex, associatedDomains={

"https://login.microsoftonline.com","https://login.microsoft.com","https://sts.windows.net","https://login.partner.microsoftonline.cn","https://login.chinacloudapi.cn","https://login.microsoftonline.us","https://login.usgovcloudapi.net","https://login-us.microsoftonline.com"

}>in .........

In some cases, after a while, it will work. It happened from 2022/08.

Does anyone know how to troubleshoot this case? It seems sometime a little bit delay of profile effective?