As an Intune MVP, I frequently need to test various setups on a dedicated test machine. The easiest way to do this is by using virtual machines (VMs). However, running a Windows VM on a MacBook Pro with Apple Silicon (M3) can be a bit tricky. In this blog post, I’ll guide you through the steps to successfully run a Windows VM on macOS with Apple Silicon.
This post is the Complete Guide to Microsoft Intune Mac Management I wish existed when I started managing macOS endpoints in a Microsoft-first environment. From enrollment via Apple Business Manager to compliance, configuration profiles, and security policies — the workflows here are the patterns I deploy in real tenants.
Managing a fleet of devices in today’s workplace isn’t just about Windows management anymore — Mac devices are becoming increasingly common. As more employees choose Macs for their performance, design, and reliability, you also have to deal with the right ways to manage and secure them. With Microsoft Intune, you have a powerful platform to manage macOS devices alongside other platforms. This post shows you how to manage macOS with Microsoft Intune and explains why integrating Macs into your corporate infrastructure is a smart move.
Encrypting the disk of a workspace is one of the basic settings that every managed device should have. Everyone who manages Windows PCs knows BitLocker. The solution that is integrated in macOS to encrypt disks is called FileVault. In this blog I want to explain you how to configure this for macOS devices.
This post is a practical guide to using MacOS custom attributes in Microsoft Intune. Custom attributes let you collect arbitrary signals from your Macs — anything a shell script can return — and surface them as device properties for compliance, dynamic groups and reporting.
Microsoft Intune’s macOS custom attributes are one of the most underrated features in the platform — a thin slice of “managed Jamf Extension Attributes” that lets you collect arbitrary signals from your Macs (anything you can return from a shell script: hardware identifiers, configuration state, installed apps, security posture) and surface them as device properties for compliance, dynamic groups and reporting. This post walks through the end-to-end workflow: how to write a robust custom-attribute shell script, deploy it via Intune, and consume the result in compliance policies and Microsoft Graph queries.
Intune already has a basic inventory of MacOS devices. On the one hand, there is a hardware inventory in which you have everything from the serial number to the free memory, but also os information. In addition, you can see in the discovered apps which applications are installed on the device. But if you want to collect more information about the devices, Intune offers a really cool feature here. The feature I am talking about is called custom attribute. This is basically a shell script that is executed on the devices and the return value is stored as a custom attribute.
Read More »
I have already described in one of my first blogs how you can set up an Intune development environment and enroll Windows devices via Autopilot and manage them. Apart from Windows, you can also manage iOS, Android and MacOS very well with Intune. Apple offers a good interface (MDM Protocol) to manage MacOS devices, unfortunately not all options are supported with Intune. Also in the WWDC22 there was some great new features introduced.
MacOS support was added to Intune back in 2015. At that time, the management of Mac devices was still very limited – something that has changed in the meantime. The number of companies using Mac devices is growing more and more, as is the general market share of macOS compared to Windows. This was around 3% in 2009 and has risen to 15% today (2022). Of course, Windows is still in front, but a trend can be seen.
There are a lot of worthy blogs that deal with the topic MacOS management and Intune:
Just to name a few. Of course there are some great other blogs.
In this blog I want to give you a step by step guide on how to enroll a macOS device in Intune. There will be more blogs in the future with the topic of managing macOS with Intune.
