I am having the most difficult time trying to understand why some of my iOS devices attempting to SSO into Native Mail receive an Access Denied error. I have IDM configured with the iOS SSO Policy at the top of my default policy configuration. I am federated with Okta which confirms with WorkspaceOne Access if my devices have the SSO certificate installed (device trust). I’m able to resolve some of the issue by rebooting the device and I’ve observed if users have cookies blocked in their Safari settings, this causes the Access Denied error. I have a call with support to review device and SSO logs, but I’m not hopeful. Is anyone else experiencing this?