Posts

Microsoft Intune Connector health monitoring using Power Automate - The ins and outs.

-
Image
  If you work with Microsoft Intune to manage devices, be it corporate or personal, then most likely you would have dealt with monitoring the health of different Intune connectors. Admins can check their Intune tenant’s connector health using the Tenant Status page in the Microsoft Intune admin center. However, as of writing this article, there is no option available natively within Intune to proactively notify administrators on the health of the Intune connectors like Apple's Push Notification service (aka APNs). APN is a critical service which uses an Apple MDM Push certificate to manage iOS/iPadOS and macOS devices in Microsoft Intune. This certificate is required to be renewed annually and in failing to do so, you can end up re-enrolling all your Apple devices. In fact, Apple sends an automated email to the registered Apple ID configured for MDM Push Certificate, advising to renew the certificate before it expires. It looks something like this - The reminder frequency is 30, 1...
Post a Comment
Read more

Configure Android Enterprise system app in Intune for any OEM

-
Image
When it comes to managed apps on Android Enterprise devices, normally it is Managed Google Play store that comes to mind. One setup and synced, you can make any published app in Managed Google Play store available to the Android managed devices. But what about apps outside the Managed Google Play store? Particularly non Google OEM specific apps in form of system apps? Organizations may want to allow system apps like Camera & Photos Gallery available to the end users to store media files in the work container. This is where Android Enterprise system app type in Intune can come handy. Through this app type you can enable a system app for Android Enterprise dedicated devices, fully managed devices, Android Enterprise corporate-owned with work profile, or Android Enterprise personally-owned work profiles. Before you assign an Android Enterprise system app to a device, you must first enable the app in Microsoft Intune. To enable an app, assign the system app as Required . When you no lo...
Post a Comment
Read more

Why is the enrolment through Company Portal unavailable? Don't go down the rabbit hole..

-
Image
Credits: Adobe Stock While working on a MDM migration project, I came across an interesting issue in Intune that almost had me heading down a rabbit hole. As part of the migration, the existing mobile devices were to be un-enrolled from a non Microsoft MDM solution and then enrolled into Intune using the Company Portal method. Nothing fancy, but when this process didn't work, I obviously got into an investigation mode and started looking at some of the obvious things. The obvious items that I looked at - 1. Network requirements for Intune, Android and Apple services. I must state that in this customer's tenant they had ADFS setup, so that added to the complexity. However, since the enrolment was taking place outside the customer's network, none of the network requirements really played a factor. 2. Intune device platform restrictions. Normally when a device is not allowed to enrol in Intune, more often than not it is due to device platform restriction policies. Especially ...
Post a Comment
Read more

Configuring Collections in Managed Google Play Store - Tips from the field!

-
Image
For the last few days I have been working on Android and iOS device management configuration in Microsoft Intune and as part of it I came across Organize apps feature aka Collections in Managed Google Play.  So what are Collections?  Collections are displayed on the front page of the managed Play Store app, allowing easy access to apps of your choice. For example, Organizations can make IT approved essential apps like Microsoft apps for quick access in the managed play store. However, as easy as this may sound, there are some caveats attached to this configuration. Tips from the field - 1. Creating a collection changes the Play Store layout type which requires that all apps must be added to a collection to be visible.  2. Deleting collections doesn't automatically revert to the basic layout. 3. Only approved apps can be added to a collection. 4. The managed Play Store app automatically displays a collection if it contains at least one app that's been made available to the...
Post a Comment
Read more