Forum Discussion
Microsoft Intune Company Portal for Linux and Conditional Access Issue
Hi ppolychron ,
Are you including the “Microsoft Intune Enrollment” app in block mode for conditional access?Also, please try to keep the CA in report only mode to see what does your sign-in logs refer.
The logs will be-
Conditional Access –> Sign-in logs -> User sign-ins (non-interactive)
Find the application with the name “Microsoft Intune Company Portal for Linux” and you should see “Failure” there. These will help to evaluate and fix the CA.
Hope it helps you in fixing the enrollment.
Best Regards,
Somesh
When I look in User sign-ins (non-interactive), I can indeed see Failures against "Microsoft Intune Company Portal for Linux", because I have a policy that requires MFA for all resources. Problem is I can't exclude that Portal for Linux, as it doesn't show up a resource.
How do I make this work, I can't exclude users from that CA policy, as that would remove their MFA requirement. Is this still an outstanding bug? Feels like a bit of a flaw at the moment.
Since this problem still exists at least 2 years later, I feel Microsoft aren't fully supporting Linux as device type in Intune, unless the resource I actually need to exclude is different name, but no documentation is pointing me towards this online. Both official docs or various blog posts.
You need to exclude Microsoft.Intune(0000000a-0000-0000-c000-000000000000) and Microsoft Intune Enrollment(d4ebce55-015a-49b5-a083-c84d1797ae8c) from the compliant device policy.
Any update of this issue? We are having the same issues; our CA policy, which requires a compliant devices, blocks the onboarding proces of Linux machines. With MacOS we had no issues...
Also we can't create an exclusion for the linux intune agent.
Looks like MS is not giving the Linux clients in combination with intune much attention...
