Home

MS-Teams with AppSense Application Manager Agent (Ivanti) is very difficult to deploy

%3CLINGO-SUB%20id%3D%22lingo-sub-539237%22%20slang%3D%22en-US%22%3EMS-Teams%20with%20AppSense%20Application%20Manager%20Agent%20(Ivanti)%20is%20very%20difficult%20to%20deploy%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-539237%22%20slang%3D%22en-US%22%3E%3CP%3EHello%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWe%20have%20in%20our%20it-infrastructur%20the%20Ivante%20AppSense%20%2F%20Application-Manager%20Agent.%3C%2FP%3E%3CP%3ETo%20deploy%20MS-Teams%20with%20the%20AppSense%20is%20very%20difficult%2C%20because%20after%20every%20update%20of%20MS-Teams%20we%20must%20change%20the%20entries%20for%20the%20signatur%2Fkeys%20(exe%20and%20some%20dll's).%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EIs%20there%20a%20way%20to%20make%20this%20easier%3F%3C%2FP%3E%3CP%3EDo%20the%20signatures%20always%20have%20to%20change%20after%20each%20update%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWe%20have%20also%20OneDrive%20or%20DropBox%20as%20an%20exception%20in%20the%20AppSense-Admin%2C%20and%20this%20local%20user-applications%20works%20fine.%20We%20have%20only%20with%20MS-Teams%20this%20problems.......%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EMany%20thanks%20in%20advance%20for%20any%20help%20%26amp%3B%20best%20regards%2C%3C%2FP%3E%3CP%3EMichael%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-539237%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAppSense%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EIvanti%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EMicrosoft%20Teams%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-540088%22%20slang%3D%22en-US%22%3ERe%3A%20MS-Teams%20with%20AppSense%20Application%20Manager%20Agent%20(Ivanti)%20is%20very%20difficult%20to%20deploy%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-540088%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F292949%22%20target%3D%22_blank%22%3E%40Michael_E%3C%2FA%3E%26nbsp%3Bcan%20yu%20not%20trust%20the%20publisher%20rather%20than%20the%20certificate%20%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-551110%22%20slang%3D%22en-US%22%3ERe%3A%20MS-Teams%20with%20AppSense%20Application%20Manager%20Agent%20(Ivanti)%20is%20very%20difficult%20to%20deploy%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-551110%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F178440%22%20target%3D%22_blank%22%3E%40Steven%20Collier%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHello%3C%2FP%3E%3CP%3Ethanks%20for%20your%20reply.%3C%2FP%3E%3CP%3EPublisher%20is%20a%20part%20of%20the%20meta-info%20and%20can%20easily%20be%20falsified.%20Good%20idea%20but%20unfortunately%20easily%20compromising.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-552838%22%20slang%3D%22en-US%22%3ERe%3A%20MS-Teams%20with%20AppSense%20Application%20Manager%20Agent%20(Ivanti)%20is%20very%20difficult%20to%20deploy%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-552838%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F292949%22%20target%3D%22_blank%22%3E%40Michael_E%3C%2FA%3E%26nbsp%3BI%20don%3Bt%20think%20so%2C%20this%20is%20how%20we%20trust%20using%20Software%20Restriction%20Policies%2C%20using%20the%20Publishers%20public%20key.%20See%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fwindows-server%2Fidentity%2Fsoftware-restriction-policies%2Fwork-with-software-restriction-policies-rules%23set-trusted-publisher-options%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fwindows-server%2Fidentity%2Fsoftware-restriction-policies%2Fwork-with-software-restriction-policies-rules%23set-trusted-publisher-options%3C%2FA%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E
Michael_E
New Contributor

Hello

 

We have in our it-infrastructur the Ivante AppSense / Application-Manager Agent.

To deploy MS-Teams with the AppSense is very difficult, because after every update of MS-Teams we must change the entries for the signatur/keys (exe and some dll's).

 

Is there a way to make this easier?

Do the signatures always have to change after each update?

 

We have also OneDrive or DropBox as an exception in the AppSense-Admin, and this local user-applications works fine. We have only with MS-Teams this problems.......

 

Many thanks in advance for any help & best regards,

Michael

3 Replies

@Michael_E can yu not trust the publisher rather than the certificate ?

@Steven Collier 

Hello

thanks for your reply.

Publisher is a part of the meta-info and can easily be falsified. Good idea but unfortunately easily compromising.

@Michael_E I don;t think so, this is how we trust using Software Restriction Policies, using the Publishers public key. See

 

https://docs.microsoft.com/en-us/windows-server/identity/software-restriction-policies/work-with-sof...

Related Conversations
How to Prevent Teams from Auto-Launch
chenrylee in Microsoft Teams on
28 Replies
Tabs and Dark Mode
cjc2112 in Discussions on
2 Replies
Early preview of Microsoft Edge group policies
Sean Lyndersay in Discussions on
65 Replies
*Updated 9/3* Syncing in Microsoft Edge Preview Channels
Elliot Kirk in Articles on
202 Replies