Implementing Intune integration into ConfigMgr 2012 R2 – Enroling a Device

ConfigMgr, Guide, Intune, SCCM 2012, SCCM 2012 R2 One comment

In the second part of this two part series I will be showing you how you can enrol a device within Intune in ConfigMgr.

Part One ‘Implementing Intune integration into ConfigMgr 2012 R2 in a Lab Environment’ is available to view here.

Setting up an iOS Device

To manage Apple iOS devices an APN (Apple Push Notification) certificate is required. To make a request for the certificate you need to open up the ConfigMgr console and navigate to the Administration workspace and select Cloud Services>Microsoft Intune Subscriptions. Right click and choose ‘Create APN certificate request’.

ManDev-001

Choose a location to save the certificate request to and click Download.

ManDev-002

Sign into the Intune portal with your onmicrosoft.com administrative account.

ManDev-003

Once the request has been made click Close.

ManDev-004

The certificate will reside in your download location.

ManDev-005

Connect to the Apple Push Notification Portal at https://idmsa.apple.com/IDMSWebAuth/login?appIdKey=3fbfc9ad8dfedeb78be1d37f6458e72adc3160d1ad5b323a9e5c5eb2f8e7e3e2&rv=2. Note that it is recommend that you do not use Internet Explorer to do this as there are issues downloading the .pem file. I have tested this on Microsoft Edge and the site does not load properly once logged in. Therefore I am using Google Chrome.

Enter your Apple ID login details. You must create an Apple ID if you do not have one.

ManDev-006

Click Create a Certificate

ManDev-007

Accept the T’s & C’s

ManDev-008

Click ‘Choose file’ and upload the generated request file.

ManDev-009

This will create a certificate that is valid for one year. Click Download.

ManDev-011

In the ConfigMgr console return to the Administration workspace. Go to Cloud Services>Microsoft Intune Subscriptions. Right click Microsoft Intune Subscription and select Configure Platforms>iOS

ManDev-012

Enable iOS enrollment and browse to select the .pem file. I’ve also ticked to be alerted 10 days before the expiration of the certificate. Click Ok. (Note there is a bug with ConfigMgr 2012 R2 SP1 and the alert check box – if using this version do not tick the box)

ManDev-013

When checking the APN certificate again in the properties note that you will get the following displayed.

ManDev-014

Now that enrolment is configured devices can be enrolled.

Enrol an iOS device

On an iOS device go to the App Store and search for intune. Get the Microsoft Intune Company Portal app.

ManDev-015

Once loaded enter a UPN address/password of a synced Intune account

ManDev-016

When prompted enroll the device.

ManDev-023

ManDev-024

To install the profile click Install.

ManDev-025

ManDev-026

Confirm the install of the profile by selecting Install

ManDev-027

Trust the Remote Management prompt

ManDev-028

ManDev-029

When the profile is installed click Done

ManDev-030

To complete the enrolment process select Done

ManDev-031

The device is now enrolled successfully

ManDev-032

The device is also listed in the ConfigMgr console in the Devices node

ManDev-033

One comment

  1. Pingback: Implementing Intune integration into ConfigMgr 2012 R2 in a Lab Environment | SCCMentor - SCCM Tips and Fixes

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s