By: Arnab Biswas | Program Manager - Microsoft Endpoint Manager - Intune
You can use Microsoft Endpoint Manager to deploy the most common app types supported by macOS such as .pkg, .dmg or .app. Natively, Mac MDM only supports installing signed .pkg-type applications. Therefore, for apps that are of non-pkg types, it requires admins to run commands on macOS either manually or as a script to create a signed app package (.intunemac file) that can be distributed using Intune. The rest of the document outlines the recommended app preparation steps. These steps have been tested on macOS 10.15.
The steps below require that you initiate with an app of DMG or APP format that satisfy the conditions above.
hdiutil attach appname.dmg
mkdir ./TargetDirectory cd ./TargetDirectory
pkgbuild --install-location /Applications --component /Volumes/path_to_app/app_to_convert.app ./TargetDirectory/intermediate.pkg
productbuild --synthesize --package /TargetDirectory/intermediate.pkg /TargetDirectory/distribution.xml
productbuild --distribution ./distribution.xml --package-path ./intermediate.pkg ./unsigned_final.pkg
productsign --sign “3rd Party Mac Developer Installer: Developer Name (XXXX)” ./unsigned_final.pkg ./signed_final.pkg
hdiutil detach /Volumes/appname
./IntuneAppUtil -c signed_final.pkg -o /finalpath
This sample script demonstrates how the above steps can convert a DMG file to INTUNEMAC.
Let us know by responding to this post if you have any questions or feedback! You can also ask questions by tagging @IntuneSuppTeam out on Twitter where our Support as a Feature team helps answer quick questions.
Blog post updates:
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.