Deploying SmartPAC with Microsoft Intune

Follow

This article provides specifics on how to deploy standard SmartPAC with InTune and some notes about the User_Injection feature.

*It should be noted that Intune is in a state of rapid development and these screenshots and menu's are subject to change.*

Step 1 - Access the Microsoft Endpoint Manager and admin center

Step 2 - The SmartPAC specific setting is located under Devices - Configuration Profiles --> Create Profile --> Device Restrictions --> Network Proxy:

 

intune_smartpac_highlighted.png

 

*Just as with MDM deployments and AD GPO you will as well need to deploy the Securly certificate to your Intune controlled devices.*

On the topic of User_Injection and Intune

If you have reached this article and don't quite know what User_Injection is please consult the following KB article first:

https://support.securly.com/hc/en-us/articles/360041375734-How-to-configure-transparent-authentication-user-injection-for-SmartPac-

Since User_Injection utilizes variables to assist SmartPAC in grabbing usernames this does not currently work by default in Intune.  This is because Intune deploys the SmartPAC to the browser directly and browsers do not interpret variables such as %USERNAME% or other variables in this fashion.

If you want to utilize User_Injection in your Intune environment for Windows devices SmartPAC MUST be deployed via a registry edit.  Currently there is no clear and easy path for registry modification within Intune besides writing custom scripts or wrappers.

https://social.technet.microsoft.com/Forums/en-US/174549c6-6b0b-49b9-8401-0813edebad9c/how-custom-registry-settings-deploy-from-intune?forum=microsoftintuneprod

Currently Securly cannot provide scripting assistance due to the complexity and variations of customer environments. Please consult your preferred Microsoft Representative or TAM for further support.

Have more questions? Submit a request

Comments