How to Microsoft Intune Service Deployment With Storage Account

 

Overview

This document provides a step-by-step guide for installing agents using Microsoft Intune and a Microsoft Azure Storage Account. By following these instructions, you can efficiently manage and deploy agents across your organization’s devices in an Azure Active Directory (Azure AD) environment.

Jump To:

• Create a Storage Account
• Create a Blob and Upload Agent Files
• Modify the Installation Script
• Initiate Installation via Intune
• Conclusion

 

Prerequisites

Before starting the installation process, ensure you have the following:

• Microsoft Intune Subscription: To manage devices and deploy applications.
• Microsoft Storage Account: To store agent installation files.

Step 1: Create a Storage Account

1. Access Azure Portal: Sign in to the Azure portal.
2. Select Storage Accounts: In the left-hand menu, select "All services" and then click on "Storage Accounts."

1. Create a New Storage Account:
   1. Click on the Create Storage Account option.

   

   1. Choose the appropriate Subscription for your storage account.
   2. Under the Resource group field, select "Create New." If you have an existing resource group, choose it from the dropdown menu and enter a name for the new resource group.

1. Advanced Settings:
   1. Navigate to the Advanced tab.
   2. Ensure that the option "Allow enabling anonymous access on individual containers" is checked.

1. Create Storage Account: Leave other fields at their default values and click Review + Create to finalize the creation of your storage account.

Step 2: Create a Blob and Upload Agent Files

1. Navigate to the Storage Account: Go to the storage account you created.
2. Access Blob Services: Click on Blob service.

1. Create a Container:
   1. Click on the Containers button.

   

   1. Click + Container and provide a name for your container.

   

   1. Set the access level to Blob and click OK.

1. Upload Agent Files:
   1. Download the ZIP file from the Endpoint Central Server by navigating to Agent -> Agent Installation -> GPO and selecting the respective remote office.

   

   1. Extract the LocalOffice.zip file.
   2. Open the created Blob container and click on the Uploadbutton to upload the following files:
      • UEMSAgent.msi
      • UEMSAgent.mst
      • DCAgentServerInfo.json

   

   

   

   1. In the upload dialog, select Block blob from the Advanced dropdown and then click Upload.

Step 3: Modify the Installation Script

1. Access the Uploaded Files:
   1. Go to the Blob container containing the uploaded files.

   

   1. Copy the URLs for UEMSAgent.msi, UEMSAgent.mst.

1. Edit the Script:
   1. copy and paste the given Text File in a text editor and save it asAgentInstall.ps1.

   

   1. For Endpoint Central versions below 11.2.2309.01:
      • Replace <DesktopCentral_Agent_Msi_URL>, <DesktopCentral_Agent_Mst_URL>, and <DCAgentServerInfo_JSON_URL> with the copied URLs.
   2. For Endpoint Central version 11.2.2309.01 and above:
      • Replace <UEMS_Agent_Msi_URL>, <UEMS_Agent_Mst_URL>, and <DCAgentServerInfo_JSON_URL> with the copied URLs.

Step 4: Initiate Installation via Intune

1. Access Microsoft Intune: Navigate to the Microsoft Intune portal.
2. Create a New Script:
   1. Go to Devices > Scripts and click on the Create button.

   

   1. Provide a name for the script and click Next.

   

3. Configure Script Settings:
   1. In the Settings section, browse to the location of the AgentInstall.ps1 file and click Open.

1. Assign the Script:
   1. In the Assignments section, assign the script to all devices, users, or specific groups as needed.

   

   1. Click Next and review the settings.
2. Finalize the Task: Click the Add button to execute the script.

Conclusion

You have successfully installed the agent on devices within a Microsoft Azure AD environment using Microsoft Intune and an Azure Storage Account. This process streamlines agent deployment, ensuring efficient management of your organization's devices. For any further assistance or troubleshooting, consult the Microsoft documentation or reach out to your IT support team.