What are you populating in the Exchange ActiveSync MDM payloads for "User" and "Email Address"? Are you logging in any $ % variables or are they blank?

What tool or MDM are you building the profile with? If you use Apple Configurator you will need 2.8 beta or higher I think. I don't think many MDMs have OAuth built-in natively yet (since iOS 12 just came out yesterday).

Keep in mind...

-iOS 12 is required for OAuth to be managed via MDM.
-If you are a O365 customer, your O365 Exchange tenant, you must enable MFA for the target user(s).
-I think O365 users have to choose a MFA method (SMS, MS Authenticator app etc) from their O365 portal page.

I have a similar issue: I can manually install a OAuth-enabled Exchange profile to my devices over USB (from Apple Configurator), but if I deploy via a MDM (Jamf, Intune, Meraki - doesn't matter), the user gets a prompt to authenticate, but the account is named "null" and the auth process doesn't complete (never gets redirected to authenticate and two-factor never occurs.)

@dstranathan I'm using $ROOM as the username (this is the variable we mapped to UPN - don't ask) and $EMAIL as the email address in the exchange payload. I'm using Jamf Pro to build the profile and deploy it. Tested under last release of 10.6.x but not yet in 10.7. My users are MFA-enabled it works as expected if the account is setup manually rather than via payload.

Not sure when it was introduced, but there is a "Use OAuth for authentication" in the Exchange ActiveSync section of a Configuration Profile now. Enabling this prompts the user to go through the 2FA authentication process, so we can now use O365 with a Configuration Profile.