Microsoft Intune - MacOS agent installation
In this post we will take a look at how to silently deploy MacOS idemeum agent with Microsoft Intune.
— Nik Pot
Deploy idemeum configuration profile
idemeum desktop client requires Accessibility
and Full disk
access when installed on MacOS workstation. We will use configuration profile to automatically enable this type of access for idemeum desktop client.
- Navigate to idemeum customer tenant admin portal
- Access
Devices
→Installation
→macOS
- Click on
MacOS profile to enable the permissions
The profile will be download that you will need to deploy to MacOS workstations.
- In Intune admin dashboard navigate to
Devices
→macOS
→Configuration
- Click
Create
→New policy
- Select
Templates
forProfile type
- Then choose
Custom
- Give profile a name
- Provide the name that will be displayed to users
- Choose
Device channel
and upload the profile that you downloaded in the steps above
- Choose the groups of devices or users that you want to deploy this profile to
- Deploy the profile to target macOS workstations
Deploy idemeum client
Now we will push idemeum client to MacOS workstations. Let's first download the execution script that we will be deploying.
- Navigate to idemeum customer tenant admin portal
- Access
Devices
→Installation
→macOS
- Click on
MDM deployment script
The script will download that we will be deploying with Intune.
- In Intune navigate to
Devices
→MacOS
→Scripts
- Create a new script and give it a name
- Upload the script that you created before
- For the
Run script as signed-in user
chooseNo
to make sure script runs asroot
- Click next and choose the devices where you need to install idemeum
- Review the configuration and save the script
- Now idemeum client will be installed to a list of target devices