Forum Discussion

tjyurek's avatar
tjyurek
Copper Contributor
Jun 25, 2024

Win32 App Not Showing in Company Portal for Entra-Registered Devices Managed by Intune

Most of our firm uses corporate-owned, entra-joined devices managed by Intune. Win32 apps show up in the company portal app list just fine, but we have a couple of BYOD devices set up as Entra-Registered. Those devices only show the Office App in the store and none of our Win32 apps.

 

I have already examined the IME logs and saw nothing of note. From everything I see online, it appears that deploying Win32 apps to Entra-Registered devices should be possible so long as they are enrolled in Intune.

Intune
Software Management

4 Replies

  • DTB's avatar
    DTB
    Iron Contributor
    Jun 26, 2024

    Hi tjyurek,

     

    Let’s go through some steps to diagnose and resolve this issue.

    Step-by-Step Troubleshooting Guide

    1. Verify Device Enrollment in Intune

    Ensure that the BYOD devices are properly enrolled in Intune.

    • Check Intune Enrollment:
      • Go to Microsoft Endpoint Manager Admin Center.
      • Navigate to Devices > All devices.
      • Verify that the Entra-Registered devices appear in the list and have a status of Compliant or In Progress.

    2. Check App Deployment Settings

    Ensure that the Win32 apps are configured to be available for the Entra-Registered devices.

    • App Configuration:
      • Go to Apps > All apps in the Microsoft Endpoint Manager Admin Center.
      • Select the Win32 app in question.
      • Go to Assignments and ensure that the app is assigned to the appropriate group that includes your Entra-Registered devices.

    3. Review Application Requirements

    Ensure that the app requirements and detection rules do not exclude Entra-Registered devices.

    • App Requirements:
      • In the app’s configuration, go to Requirements and review the OS version and other settings.
      • Ensure that there are no criteria that would exclude Entra-Registered devices.

    4. Check Group Membership

    Ensure that the devices are part of the correct Azure AD group to which the Win32 app is assigned.

    • Group Membership:
      • Go to Azure Active Directory > Groups.
      • Select the group to which the Win32 app is assigned.
      • Verify that the Entra-Registered devices are members of this group.

    5. Review Intune Management Extension (IME) Logs

    Although you mentioned examining the IME logs, ensure you specifically look for any errors or warnings related to app deployment.

    • Log Location:

      • On the Entra-Registered device, the logs can be found at: C:\ProgramData\Microsoft\IntuneManagementExtension\Logs\IntuneManagementExtension.log.

    • Common Issues:

      • Look for lines indicating issues with app detection, download, or installation.

    6. Company Portal Settings

    Ensure that the Company Portal settings are correctly configured on the Entra-Registered devices.

    • Company Portal App:
      • Open the Company Portal app on the Entra-Registered device.
      • Ensure it is signed in with the user’s work account.
      • Refresh the app to see if the Win32 apps appear.

    7. Check for Conditional Access Policies

    Ensure that Conditional Access policies are not blocking the deployment of Win32 apps to Entra-Registered devices.

    • Conditional Access:
      • Go to Azure Active Directory > Security > Conditional Access.
      • Review the policies to ensure they do not restrict access to Intune or the Company Portal.

    Conclusion

    By following these steps, you should be able to identify and resolve the issue preventing Win32 apps from appearing in the Company Portal for Entra-Registered devices. Ensure that the devices are properly enrolled, assigned to the correct groups, and meet the app requirements.

     

    • tjyurek's avatar
      tjyurek
      Copper Contributor
      Jun 26, 2024
      I have gone through each of these steps. I will double-check the IME logs to determine if anything else is occurring, but everything else is assigned properly. The Win32 app I am trying to deploy works when deployed to Entra-Joined devices, but not to this particular BYOD Entra-Registered device.
  • SebastiaanSmits's avatar
    SebastiaanSmits
    Iron Contributor
    Jun 26, 2024
    Just to confirm, indeed you can deploy Win32 app to Entra Registered devices. Are the assignments of the app in order, user/devices are in scope of the assignments? You do not use a filter that excludes the devices?
    • tjyurek's avatar
      tjyurek
      Copper Contributor
      Jun 26, 2024
      The app is assigned under "Available to enrolled devices" to a security group comprising of users. The BYOD user is a member of said group. His devices shows up as compliant in Intune, yet his company portal app list only shows the Office App, not the Win32 app I am trying to deploy.

Resources