U bekijkt het onderwerpartikel [Top] 103 Microsoft Intune Company Portal for Linux and Conditional Access Issue dat door ons is samengesteld uit vele bronnen op internet.
Jan 19 2023 02:30 PM
Jan 19 2023 02:30 PM
Greetings everyone,
I have the following scenario implemented regarding conditional access:
Rule#1: For pilotuser1, for all cloud apps, for all platforms –> require MFA
Rule#2: For pilotuser1, for all cloud apps except Microsoft Intune Enrollment and Microsoft Intune, for all platforms –> Require Device marked as compliant
This should allow me to enroll to Intune successfully a non-enrolled device and require the device compliance for the other workloads. For Windows it works just fine. The problem lies with Linux.
Following the instructions on Enroll a Linux device in Intune | Microsoft Learn & Get the Microsoft Intune app for Linux | Microsoft Learn I installed Intune App and Edge (Version 109.0.1518.52 (Official build) (64-bit)) on a VM with Ubuntu 22.04.
I open the Intune App and try to sign in:
First step is to Register the Device on Azure AD, it goes without a problem –>
On the next stage I get the following and press continue:
At this stage Microsoft Edge opens and I sign in successfully but the Intune App throws an error:
The sign in logs on Azure AD show that even though I excluded Intune Enrollment from the CA policy, it is not enough.
Apparently something is different in the enrollment process of Linux because I had no issues with Windows 10 enrollment .
Any thoughts on the subject would be appreciated.
Kind Regards,
Panos
Jan 20 2023 11:41 AM
Jan 20 2023 11:41 AM
Hi @ppolychron ,
Are you including the “Microsoft Intune Enrollment” app in block mode for conditional access?Also, please try to keep the CA in report only mode to see what does your sign-in logs refer.
The logs will be-
Conditional Access –> Sign-in logs -> User sign-ins (non-interactive)
Find the application with the name “Microsoft Intune Company Portal for Linux” and you should see “Failure” there. These will help to evaluate and fix the CA.
Hope it helps you in fixing the enrollment.
Best Regards,
Somesh
Jan 21 2023 08:05 AM – edited Jan 21 2023 08:10 AM
Jan 21 2023 08:05 AM – edited Jan 21 2023 08:10 AM
Hi,
It might be a bug because the Linux support is relatively new. Have you checked this blog post? It might be something to do with your Edge Version in the device.
Complete Guide to Managing Linux with Intune – Prajwal Desai
Moe
Jan 26 2023 02:55 AM
Jan 26 2023 02:55 AM
Feb 08 2023 12:16 PM
Feb 08 2023 12:16 PM
Hi @ppolychron – thanks for the report! This definitely looks wrong. There’s additional logic that should be kicking in to honor this request, but I don’t think it’s properly taking the Linux client’s identity into account when doing so.
FYI @Intune_Support_Team in case we want to open a ticket to track. I’d like to take a look at this.
Feb 21 2023 01:29 AM
Feb 21 2023 01:29 AM
Thank you for your time reading the post. Any insights from you or the Team would be appreciated!
Feb 21 2023 12:03 PM
Feb 21 2023 12:03 PM
Thanks for the tag @benferse!
@ppolychron – If you are still experiencing issues with this, please open a new support request via the Microsoft Endpoint Manager admin center’s “Help and support” blade or any of the other methods here: aka.ms/IntuneSupport, as this will help provide our team with the necessary information to resolve the issue. Once created, please send us a message with your support request number so we can follow-up on it internally. Thanks!
Feb 22 2023 02:28 AM
Feb 22 2023 02:28 AM
@Intune_Support_Team A support request has been already created with Case ID : 2302211420000695
Mar 05 2023 11:13 PM
Mar 10 2023 05:17 AM
@WelpeKeks We don’t resolved it yet ! The MS Case is still opened. I will come up with a reply when we have a resolution for that.
Bekijk hier meer informatie over dit onderwerp: microsoft access linux