UPDATE 09.05.2025: Microsoft has informed us that in order to solve this issue our customers need to start using the require app protection policy.
A policy within the Microsoft Entra ID conditional access is causing issues with reporting emails via the Hoxhunt add-in on Outlook Mobile. When users try to report emails on Outlook Mobile they may get the following error:
AADSTS7000024: Inconsistent broker application IDs asserted by incoming credentials
This article is related to the incident mentioned here: https://status.hoxhunt.com/incidents/ksj95ybyw58y
Hoxhunt believes there has been a change/update within Microsoft that caused a bug within this section. A previous solution we mentioned on this article (adding an exclusion rule to the Conditional Access policy of the Hoxhunt Reporting app) does not and will not work.
SOLUTION
Microsoft has informed Hoxhunt that in order to fix this issue our customers need to start using the require app protection policy. Read about how to migrate from the approved client app Conditional Access grant to the application protection policy grant on Microsoft's article here: https://learn.microsoft.com/en-us/entra/identity/conditional-access/migrate-approved-client-app
If you cannot perform the migration at this time, the only workaround is to re-enable legacy Exchange Online access tokens. Note however that the legacy Exchange Online access tokens will be turned off permanently in June 2025.
If you need any assistance regarding this, please contact Hoxhunt Support at support@hoxhunt.com