Deploying the Company Portal App from Microsoft to End Users

Deploying the Company Portal app involves the following steps:

  1. Download the Company Portal app from Microsoft.

  2. Upload the Company Portal app to Jamf Pro as a package.

  3. (Optional) Identify Mac computers that do not have the Company Portal app installed.

  4. Deploy the Company Portal app to Mac computers.

Best Practice:

Do Not Enable Conditional Access

Best practice workflows cover common scenarios; however, the following recommendations may not apply in your environment.

Jamf recommends that you do not enable Conditional Access for computers with multiple user accounts. Microsoft Endpoint Manager assigns one User Principal Name (UPN) to a device record. As a result, Jamf Pro will only send active data for one AAD ID per device at a time.

Downloading the Company Portal app from Microsoft

On a Mac computer, download the current version of the Company Portal app for macOS from the Microsoft website.

Important:

Do not install it, you need a copy of the app to upload to Jamf Pro.

To download the CompanyPortal_Installer.pkg file go to the following website: https://go.microsoft.com/fwlink/?linkid=862280

Uploading the Company Portal App to Jamf Pro as a Package

  1. Upload the Company Portal app to a distribution point in Jamf Pro.
  2. In Jamf Pro, click Settings in the top-right corner of the page.
  3. In the Computer Management section, click Packages .
  4. Create a new package that includes the Company Portal app.
  5. Click Save .

Identifying Mac Computers That Do Not Have the Company Portal App Installed

Jamf recommends creating a smart group to help you identify and manage computers that have the Company Portal App installed.

  1. In Jamf Pro, click Computers at the top of the sidebar.
  2. Click Smart Computer Groups in the sidebar.
  3. Create a new smart group that identifies Mac computers that do not have the CompanyPortal app from Microsoft installed.
  4. Click Save .

You can now use the smart group as the scope for policies and other management actions in Jamf Pro.

Deploying the Company Portal App to Mac Computers

  1. In Jamf Pro, click Computers at the top of the sidebar.
  2. Click Policies in the sidebar.
  3. Create a policy that deploys the Company Portal app to users.
  4. Use the General payload to configure the following settings:
    • For Trigger, select Enrollment Complete and Recurring Check-in.

    • For Execution Frequency, select Once per computer.

  5. Click the Packages payload, and then click Configure.
  6. Click Add for the package that includes the Company Portal app.
  7. Configure the settings for the package.
  8. Specify a distribution point for Mac computers to download the package from.
  9. Click the Scope tab to specify which Mac computers should install the Company Portal app.
    Best Practice:

    You can also use the smart computer group that you previously created.

  10. Click Save .
The policy runs on Mac computers in the scope the next time they check in with Jamf Pro and meet the criteria in the General payload.