Event banner
Event details
45 Comments
- Heather_Poulsen
Community Manager
Welcome to Office Hours! We'll be here for the next hour answering your questions about deploying and managing Windows. Intune questions? We're here for you! Windows 365? We've got you covered? Windows LAPS? Yep, that too!
- Hello! What is Microsoft's recommended method of installing the Company Portal app now that Store for Business is no longer supported? We have SCCM co management enabled and are looking at using Intune to deploy applications.
- Joe_Lurie
Microsoft
Jason_Berger You can use Intune to deploy Store apps, including Company Portal. Take a look at Add Microsoft Store apps to Microsoft Intune | Microsoft Learn
- I have attempted to deploy this app as required to a group with only a handful of pilot machines in it, but they aren't receiving it. Similar to the OP I am in SCCM Co-management Pilot mode. I have separate collections configured for each workload to make the testing granular. Currently, the test devices are ONLY in collections that "Intune Auto-enrollment" them and "Windows Update Policies" and "Office Click-to-Run Apps" workloads are handled by Intune. I am guessing this is why the Company Portal is not deploying. Does this sound right? Do I have to enable "Client apps" or "Device Configuration" or "Compliance Policies" etc. to make the app installation work?
Good morning Jason_Berger and thank you for the question!
I'd recommend taking a look at our latest blog post on the new updates in app management in Intune:
Please let me know if you have any questions!
- Hi Jason, not sure on the MS supported way, but we have the same config as yourselves by the sounds of it. We are deploying it through Intune still, but using the 'Microsoft Store app (new)' one and not the 'Microsoft Store for Business' one. Works a treat for us
- Thanks for the replies! I would like to clarify we have the Microsoft Store disabled for the organization. This has been our main issue. Could we still use tenant connector for the Business Store? I have seen some details for that but thought it was an outdated method. Thanks again for the assistance
Hi, any ideas as to when scoping will be supported for Intune role bases access control for tenant attach?
Asking because we want to use scope tag with a custom role to set permissions on those devices.
Thks
- Hi, I wanted to know what is now the recommended way to install the sccm client on Azure AD only joined devices when we have https configured with an internal PKI. We have co-management setup. Thank you in advance and don't hesitate if you have any questions
- Jason_SandysWith HTTPS client communication, devices will first need to have a certificate deployed to them. This can be done using SCEP or PKCS via Intune and Intune certificate connector. From there, Intune can push the client agent via an app on existing devices or using the Autopilot into Co-management feature for new devices provisioned by Autopilot. Info on the Intune cert connector at https://learn.microsoft.com/en-us/mem/intune/protect/certificate-connector-overview and info on the AP into Co-Mgmt feature is at https://learn.microsoft.com/en-us/managed-desktop/prepare/autopilot-co-management.
- I work in a school system. Students and staff have different domain names so it's easy to distinguish a staff member email account vs. a student email account. Is there any way to list each of these domains at the Windows 11 login screen so that the user can choose what domain they are logging into? I know there is a way to push a preferred domain but is it possible to list more than one?
Hi Hollie, it is a little bit difficult for me to know exactly what your exact configuration is, so I am going to make some assumptions. if have your computers attached to a single internal Active Directory Domain and your users are assigned different domain depending on whether they are staff or students. If you have set in 'Active Directory Domains and trusts' the alternative domain names given to staff and students as UPN suffixes. Then your students and staff should be able to logon to the client computers using their full email address. You may of course have this all in place already and you may just want an effortless way of telling visually who's login a student is and which one is a member of staff. Well, if you have an internal active directory, you can use Group policy to do all sorts of things if you split your user groups up into staff and students. Like give the users a pre logon warning, Fix the background of their desktop to whatever you want, I am afraid my skills are bit old school if you are entirely Cloud based and use everything Via Micrsoft 365b and Azure, my Skills aren't so good . The domain I currently manage for my Job is Hybrid. I am learning more and more about Micrsoft 365 and Azure, but Iam not quite ready or even sure if micrsoft really has everything in place for our Business to go completely serverless
The Stream and OneDrive teams hold live office hours via Teams Meeting and those are really helpful. I hope you'll consider expanding this to a Teams Meeting like they do.
Here are links, for those interested:
