Forum Discussion
Intune Management Extension Deployment
- Jun 15, 2025
Hy Jamie,
So... Microsoft uses multiple CDN and management endpoints to ensure availability and redundancy.
The IME can failover between these endpoints if one is unreachable.:
- If login.live.com remains blocked, new device enrollments or new user authentications may fail, preventing fresh installations or re-enrollments.
- However, already installed IME agents should continue to update and communicate via manage.microsoft.com and CDN endpoints, assuming those URLs are allowed. i don't know if its suitable for a ,msi install.
back again, login.live.com is mainly needed once for initial authentication if this apply to the .msi installation, you need to test or go and watch traffic on fresh new installed Client in order to better understand this facts.
Good luck!
Hy Jamie,
So... Microsoft uses multiple CDN and management endpoints to ensure availability and redundancy.
The IME can failover between these endpoints if one is unreachable.:
- If login.live.com remains blocked, new device enrollments or new user authentications may fail, preventing fresh installations or re-enrollments.
- However, already installed IME agents should continue to update and communicate via manage.microsoft.com and CDN endpoints, assuming those URLs are allowed. i don't know if its suitable for a ,msi install.
back again, login.live.com is mainly needed once for initial authentication if this apply to the .msi installation, you need to test or go and watch traffic on fresh new installed Client in order to better understand this facts.
Good luck!