Open DaanA32 opened 1 year ago
Hi. please read the README to get the results of journalctl, and see if there is anything suspicious in the log.
Note that if you are following some other guide to setup intune, do not report bug here. Report bug to the solution provider.
If you would like to contribute a working level-2 solution for archlinux, we want to create some verified archlinux native packages instead of using debtap. debtap might not work as expected sometimes.
Hi Recolic,
Thanks for responding. I am trying to do a native install instead of the way you described.
I haven't seen anything suspicious, but will take another look.
The logs for user service msft-identity-broker.service
seem to be empty so I may be missing something there.
Best wishes, Daan
I've looked at the logs in both the user and system identity brokers, they close after completing authentication. It seems to me that the main issue stems from
2022-10-18T13:00:21.451876Z ERROR Error calling IWS for Terms of Use: Unexpected failure: Bad Request
I've tried to find where this happens by using wireshark, but I have not found it.
I got the intune app working on my arch box. I think all I needed to get past that error was to modify the os-release file.
cat /etc/os-release
PRETTY_NAME="Ubuntu 22.04.3 LTS"
NAME="Ubuntu"
VERSION_ID="22.04"
VERSION="22.04.3 LTS (Jammy Jellyfish)"
VERSION_CODENAME=jammy
ID=ubuntu
I got the intune app working on my arch box. I think all I needed to get past that error was to modify the os-release file.
cat /etc/os-release
PRETTY_NAME="Ubuntu 22.04.3 LTS" NAME="Ubuntu" VERSION_ID="22.04" VERSION="22.04.3 LTS (Jammy Jellyfish)" VERSION_CODENAME=jammy ID=ubuntu
Hi, is this a direct install or using another ubuntu box certificates? Were you able to enroll?
I got the intune app working on my arch box. I think all I needed to get past that error was to modify the os-release file. cat /etc/os-release
PRETTY_NAME="Ubuntu 22.04.3 LTS" NAME="Ubuntu" VERSION_ID="22.04" VERSION="22.04.3 LTS (Jammy Jellyfish)" VERSION_CODENAME=jammy ID=ubuntu
Hi, is this a direct install or using another ubuntu box certificates? Were you able to enroll?
Direct install
Thanks. I managed to install it as well and even managed to enroll after creating /etc/os-release and obeying other policies enforced by the server.
@recolic , would you consider maybe packaging the whole thing into one package in Aur so others could also give it a try?
I also managed to get it all installed and enroll.
I am considering creating AUR packages for intune-portal and it's dependencies from this repo. Would you be okay with that or do you want to do it yourself?
Could you make the change and raise a PR? Thanks.
it's okay to open a PR to this GitHub repo. I will copy it to the original gitlab repo.
Oct 5, 2023 03:19:31 Dan Johansen @.***>:
I also managed to get it all installed and enroll.
I am considering creating AUR packages for intune-portal and it's dependencies from this repo. Would you be okay with that or do you want to do it yourself?
— Reply to this email directly, view it on GitHub[https://github.com/recolic/microsoft-intune-archlinux/issues/1#issuecomment-1748603546], or unsubscribe[https://github.com/notifications/unsubscribe-auth/AEVTVEF534P7VY5LGB37DYLX52CR7AVCNFSM6AAAAAARIEK6TGVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTONBYGYYDGNJUGY]. You are receiving this because you were mentioned. [Tracking image][https://github.com/notifications/beacon/AEVTVEELPKUORUZQQUBUJR3X52CR7A5CNFSM6AAAAAARIEK6TGWGG33NNVSW45C7OR4XAZNMJFZXG5LFINXW23LFNZ2KUY3PNVWWK3TUL5UWJTTIHGJJU.gif]
Thanks. I managed to install it as well and even managed to enroll after creating /etc/os-release and obeying other policies enforced by the server.
@recolic , would you consider maybe packaging the whole thing into one package in Aur so others could also give it a try?
emm I don't think we should merge everything into one package.
Firstly, it's not how ArchLinux packaging system works. Secondly, they are also not doing this for Ubuntu side.
I think we should simply port the official things (deb package) to archlinux, keep the original structure, and populate the dependency information correctly.
I seem to be missing something. The intune-agent does not check-in because it's waiting for user login. Even though I just used the portal to log in. So I'm missing something that "keeps" me logged in, so the agent can send information regularly.
Any ideas?
Did you check the logs when run from a terminal? Do you have edge installed just in case? Also even on Ubuntu I launch intune from time to time and it's always in logged out state, I click login and then it works to check compliance.
I seem to be missing something. The intune-agent does not check-in because it's waiting for user login. Even though I just used the portal to log in. So I'm missing something that "keeps" me logged in, so the agent can send information regularly.
Any ideas?
Note that github issue is not "chat room".
Could you collect all info (for example, what error log do you see, what did you do, and the error screenshot) and open a new issue? It's going off-topic...
Sure. I don't know any chatroom related to Intune on Arch. But I'll bounce. No worries.
I also have issues getting the release info lined up with the policies.
It seems, that on manjaro, the /etc/os-release
file is not accessed by intune, but the /etc/lsb-release
file.
when I change /etc/lsb-release
from
DISTRIB_ID="ManjaroLinux"
DISTRIB_RELEASE="23.1.2"
DISTRIB_CODENAME="Vulcan"
DISTRIB_DESCRIPTION="Manjaro Linux"
to
DISTRIB_ID="Ubuntu"
DISTRIB_RELEASE="22.04"
DISTRIB_CODENAME="jammy"
DISTRIB_DESCRIPTION="Ubuntu 22.04.3 LTS"
intune has at lease the ubuntu os figured out - however, it is still not compliant with the policy for allowed os distributions
I had a similar problem while enrolling an ArchLinux machine with lots of packages installed.
intune-portal will run /usr/bin/lsb_release
to check for system information, and updating /etc/lsb-release
is not sufficient.
Easy solution is: destroy the lsb_release program like sudo rm /usr/bin/lsb_release
. (or write a fake one if you want)
Updated this solution into README.
Hi Recolic,
I've managed to install all the necessary program using apt to download the package and then converting them with debtap. Now I'm able to logon after adjusting the JAVA_HOME in the systemd service files. After logging in I get the following:![image](https://user-images.githubusercontent.com/25754266/196455655-cbecdea6-66e3-456f-9a3c-34ad1e49a306.png)
As well as the following ERROR messages:
Have you encountered this? Best wishes, Daan