Microsoft Intune - MacOS agent installation

Deploy idemeum configuration profile

idemeum desktop client requires Accessibility and Full disk access when installed on MacOS workstation. We will use configuration profile to automatically enable this type of access for idemeum desktop client.

• Navigate to idemeum customer tenant admin portal
• Access Devices → Installation → macOS
• Click on MacOS profile to enable the permissions

The profile will be download that you will need to deploy to MacOS workstations.

• In Intune admin dashboard navigate to Devices → macOS → Configuration
• Click Create → New policy
• Select Templates for Profile type
• Then choose Custom

• Give profile a name

• Provide the name that will be displayed to users
• Choose Device channel and upload the profile that you downloaded in the steps above

• Choose the groups of devices or users that you want to deploy this profile to
• Deploy the profile to target macOS workstations

Deploy idemeum client

Now we will push idemeum client to MacOS workstations. Let's first download the execution script that we will be deploying.

• Navigate to idemeum customer tenant admin portal
• Access Devices → Installation → macOS
• Click on MDM deployment script

The script will download that we will be deploying with Intune.

• In Intune navigate to Devices → MacOS → Scripts
• Create a new script and give it a name

• Upload the script that you created before
• For the Run script as signed-in user choose No to make sure script runs as root

• Click next and choose the devices where you need to install idemeum
• Review the configuration and save the script
• Now idemeum client will be installed to a list of target devices