Conditional Access requirements (ios and android): Require APP policy and Require MFA
Quick question as a verification: Is it also required to enable "Require Multi-factor authentication" for CA policies targetting iOS and Android if we would already require "app protection policy"?
With regards to the Partner Center seucrity requirements you would need to make sure that all users are configured for MFA. So only requiring an approved app would not be enough - I can't say if in your scenario it is require to add MFA as control in the same policy - since you could also have the MFA control policy in a separate policy.
Get consultations form Technical Presales & Deployment services team via https://aka.ms/technicalservices