SOLVED

Linux - Devices not syncing unless Microsoft Intune app is open and user signs in

Copper Contributor

We have noticed that devices joined to Intune do not sync unless users open and sign in to the Microsoft Intune app manually.

 

The last check-in time on all of our Linux devices showed that the device had not synced ever since we deployed the app on the workstations pretty much (weeks).

 

All the devices are running Ubuntu 22.04 and we used the following procedure to install the Intune app: https://learn.microsoft.com/en-us/mem/intune/user-help/microsoft-intune-app-linux

 

Is this a known issue, or is there something that we've missed in the installation process that would keep the app running in the background with the user signed in?

3 Replies
best response confirmed by vdesroches (Copper Contributor)
Solution

@vdesroches This is by design, as far as I know.

 

The Intune Portal is run as the end user, not as a system service. Devices are only synced when a user actively signs in to the Intune portal. (and then periodically, as long as the Intune Portal app is running)

 

Compliance checks rely on user cooperation, which is a questionable choice in my opinion.

I guess you could make the Intune portal start periodically or at each login of the user, so that they remember to sign in if required.

@GRaffinAtos 

I actually did that like so (Ansible does client setup in our case):

 

- name: "Add Intune Portal to XDG Autostart folder"
  ansible.builtin.file:
    src: /usr/share/applications/intune-portal.desktop
    dest: /etc/xdg/autostart/intune-portal.desktop
    state: link

 

But this still does not help that users need to manually sign in to the Intune portal application, or no compliance checks will be performed.

1 best response

Accepted Solutions
best response confirmed by vdesroches (Copper Contributor)
Solution

@vdesroches This is by design, as far as I know.

 

The Intune Portal is run as the end user, not as a system service. Devices are only synced when a user actively signs in to the Intune portal. (and then periodically, as long as the Intune Portal app is running)

 

Compliance checks rely on user cooperation, which is a questionable choice in my opinion.

View solution in original post