Issue:
How to deploy Elements EPP for Computers (Mac) using Intune?
Resolution:
You could follow the instructions below in order to deploy Elements EPP for Computer (Mac) using Intune to your Mac devices.
Note: Make sure that you have added your Mac devices to the Intune Company Portal before proceeding with this deployment. You may refer to the following Microsoft page for more details.
https://learn.microsoft.com/en-us/mem/intune/user-help/enroll-your-device-in-intune-macos-cp
1. Login to Microsoft Intune admin center (https://intune.microsoft.com/#home)
2. Create a new group by following the steps below
2.1. Go to "Groups"
2.2. Click on "New Group"
2.3. Select "Security" for the Group Type
2.4. Enter the name of the group at "Group Name"
2.5. Leave other settings as default
2.6. Click on "No members selected" link
2.7. Search for your Mac devices
2.8. Put a tick to select all Mac devices
2.9. Click on "Select" button at the bottom
2.10. Click on "Create" button to proceed with new group creation
Note: You may skip creating a new group if there is an existing group for your Mac devices on Intune portal.
3. Create a new profile to allow WithSecure system extensions and etc
Note: It is recommended to create the configuration profiles within Intune rather than using a separate Preference file (*.plist).
In case of WithSecure system extensions:
- Refer to the following documentation for more details on how to create a new profile with system extension settings.
Importing MDM profiles with system extension settings | Elements Endpoint Protection | Latest | WithSecure User Guides
In case of Content Filtering:
- Refer to the following documentation for more details on how to create a new profile with content filtering settings.
Creating MDM profiles with content filtering settings | Elements Endpoint Protection | Latest | WithSecure User Guides
In case of Full Disk Access:
- Refer to the following documentation for more details on how to create a new profile with full-disk access settings.
Creating MDM profiles with full-disk access settings | Elements Endpoint Protection | Latest | WithSecure User Guides
In case of User Notifications:
- Refer to the following documentation for more details on how to create a new profile with notification settings.
Creating MDM profiles with notification settings | Elements Endpoint Protection | Latest | WithSecure User Guides
4. Deploy Elements EPP for Computers (Mac) to your Mac devices
4.1. Go to "Apps"
4.2. Select "macOS" from the list of available platforms
4.3. Click on "Add" button
4.4. Select "Line-of-business app" for App type
4.5. Click on "Select" button at the bottom
4.6. Click on "Select app package file" link
4.7. Click on "Select a field" field
4.8. Search for the installer file (*.pkg) of Elements EPP for Computer (Mac)
Note: There is a need to change the file extension of the installer from *.mpkg to *.pkg so that it would be recognized by Intune.
4.9. Click on "OK" button
4.10. Enter Name, Description and Publisher (use "WithSecure" in this case) for App Information
4.11. Select "macOS Monterey 12.0" for the Minimum operating system
4.12. For the Included apps, maintain just the below bundle IDs and remove the rest of the unnecessary items
com.withsecure.wsagent 3.0.53367
Note: 3.0.53367 indicates a build version, it is recommended to always use the latest build version
4.13. Leave other setting as default and click on "Next" button
4.14. Under Required category, click on "Add group"
4.15. Select your group from the list and click "Select" button
4.16. Click on "Next" button
4.17. Click on "Create" button
Note: It may take some time before Elements EPP for Computers (Mac) is being deployed to your mac devices silently in the background.
Article no: 000043088