Manage Ubuntu Linux with Microsoft Intune
It is now possible to register in Microsoft Intune Linux workstations. To date, the equipment must run the Ubuntu distribution Ubuntu Desktop 22.04 or 20.04 LTS. When installing the Linux distribution, it is recommended to activate encryption. This may be required by Microsoft Intune.
Different prerequisites must be respected.
- Download and install Ubuntu Desktop 22.04 or 20.04 LTS. You can dowsload iso file here
- Install Microsoft Edge web browser, version 102. X or later
- Install Microsoft Intune app for Linux
Create compliance policy
Before to enroll device on Microsoft Intune, we will create a compliance policy. From the Intune web portal, click on Devices then on Linux.
Click on Compliance policies then on Create policy.
Select Linux on the Platform drop-down list and Settings catalog on Profile type drop-down list then click on Create.
Enter the desired name then click on Next.
Click on Add settings to add compliance parameters.
Select the desired parameter.
Configure action for noncompliance device then click on Next.
Assign the policy then click on Create.
The policy has been created.
Install Microsoft Edge
Microsoft Edge is installed on Ubuntu desktop by command line.
The following command line permit to install the prerequisites for install Microsoft Edge on Ubuuntu desktop.
sudo apt install software-properties-common apt-transport-https wget
It is now necessary to download and install the repository key. Run the following command
wget https://packages.microsoft.com/keys/microsoft.asc -O- | sudo apt-key add -
The repository can now be added to Ubuntu.
sudo add-apt-repository "deb [arch=amd64] https://packages.microsoft.com/repos/edge stable main"
Install Microsoft Edge
From the Ubuntu, run the following command to install Microsoft Edge.
sudo apt install microsoft-edge-stable
Microsoft Edge has been installed.
Install Microsoft Intune app
Microsoft Intune app must be installed to Ubuntu for enroll the computer.
Curl must be installed on the Ubuntu computer. Run the following command to install it.
sudo apt install curl gpg
It is now necessary to install the Microsoft package signing key. Run the following command for download public Microsoft GPG key
curl https://packages.microsoft.com/keys/microsoft.asc | gpg --dearmor > microsoft.gpg
Add public Microsoft GPG key with the following command.
sudo install -o root -g root -m 644 microsoft.gpg /usr/share/keyrings
Run the command to add the software repository with the command. For Ubuntu 22.04 :
sudo sh -c 'echo "deb [arch=amd64 signed-by=/usr/share/keyrings/microsoft.gpg] https://packages.microsoft.com/ubuntu/22.04/prod jammy main" > /etc/apt/sources.list.d/microsoft-ubuntu-jammy-prod.list'
Run the command to add the software repository with the command. For Ubuntu 20.04 :
sudo sh -c 'echo "deb [arch=amd64 signed-by=/usr/share/keyrings/microsoft.gpg] https://packages.microsoft.com/ubuntu/20.04/prod focal main" > /etc/apt/sources.list.d/microsoft-ubuntu-focal-prod.list'
Delete the microsoft.gpg file with the command
sudo rm microsoft.gpg
Install the Microsoft Intune app
Run the following command to install the Microsoft Intune application. Reboot the computer after the application is installed.
sudo apt update
sudo apt install intune-portal
Intune application has been installed.
Enroll Linux device
From the Ubuntu, lauch the Microsoft Intune application then click on Sign in.
Enter username and password of the user. An intune licence must be assigned to the user before to enroll the device..
Click on Register to continue enrollment.
A new windows appear, click on Begin.
All the information that my organization can see appears. Click on Begin.
The computer has been enrolled and is compliant.
The linux computer has been enrolled to Microsoft Intune.