Fortinet black logo

(iOS) Administration Guide

Home FortiClient 6.2.0 (iOS) Administration Guide

Configuring Microsoft Intune integration

6.2.0
7.2.0
7.0.0
6.4.0
6.2.0
Copy Link
Copy Doc ID a528a021-e577-11e9-8977-00505692583a:255445
Download PDF

Configuring Microsoft Intune integration

Intune integration allows FortiClient iOS endpoints to connect to EMS. FortiClient iOS 6.2.2 and later versions support integration with Intune.

To configure Microsoft Intune integration:
  1. Add FortiClient iOS to Microsoft Intune.
  2. Add the default instance for iOS using App Config. Supported App Config keys include the following:

    Key

    Description

    mac_address

    iOS device's MAC address.

    udid

    iOS device's UDID.

    group_tag

    This value is used as a group tag for configuration in EMS. For example, you can use the string "field_engineer" as a group tag, which is used when FortiClient iOS initially connects to EMS. See Group assignment rules.

    cloud_invite_code

    This value is used for connecting FortiClient iOS to FortiClient Cloud. Enter the invite code received from FortiClient Cloud.

    user_name

    FortiClient iOS username.

    ems_server

    EMS IP address or hostname.

    ems_port

    Port number for FortiClient iOS to connect Telemetry to EMS. By default, this is 8013.

    ems_key

    FortiClient Telemetry connection key. The EMS administrator may require FortiClient iOS to provide this key during connection.
  3. To enable Web Filter:
    1. Log in to Microsoft Endpoint Manager admin center.
    2. Go to Devices - Configuration profiles.
    3. Click Create profile.
    4. Configure the profile:
      1. From the Platform dropdown list, select iOS/iPadOS.
      2. From the Profile type dropdown list, select Custom.
      3. From the Custom configuration profile name dropdown list, select the desired profile.
      4. In the Configuration profile file field, select the Web Filter Mobileconfig profile that you created in Creating a Mobileconfig profile. Click OK.
    5. Click Create.

    6. Go to Assignments, then select the desired groups/users/devices to enable Web Filter for.
    7. After enrolling the iOS device to the Intune portal, ensure that the device receives the Web Filter Mobileconfig profile:
      1. On the device, go to Settings > General > Device Management.
      2. In the management profile, go to Restrictions.
      3. Verify that the Plug-In Bundle ID field contains the following URI: com.fortinet.forticlient.fabricagent.
Previous
Next

Configuring Microsoft Intune integration

Intune integration allows FortiClient iOS endpoints to connect to EMS. FortiClient iOS 6.2.2 and later versions support integration with Intune.

To configure Microsoft Intune integration:
  1. Add FortiClient iOS to Microsoft Intune.
  2. Add the default instance for iOS using App Config. Supported App Config keys include the following:

    Key

    Description

    mac_address

    iOS device's MAC address.

    udid

    iOS device's UDID.

    group_tag

    This value is used as a group tag for configuration in EMS. For example, you can use the string "field_engineer" as a group tag, which is used when FortiClient iOS initially connects to EMS. See Group assignment rules.

    cloud_invite_code

    This value is used for connecting FortiClient iOS to FortiClient Cloud. Enter the invite code received from FortiClient Cloud.

    user_name

    FortiClient iOS username.

    ems_server

    EMS IP address or hostname.

    ems_port

    Port number for FortiClient iOS to connect Telemetry to EMS. By default, this is 8013.

    ems_key

    FortiClient Telemetry connection key. The EMS administrator may require FortiClient iOS to provide this key during connection.
  3. To enable Web Filter:
    1. Log in to Microsoft Endpoint Manager admin center.
    2. Go to Devices - Configuration profiles.
    3. Click Create profile.
    4. Configure the profile:
      1. From the Platform dropdown list, select iOS/iPadOS.
      2. From the Profile type dropdown list, select Custom.
      3. From the Custom configuration profile name dropdown list, select the desired profile.
      4. In the Configuration profile file field, select the Web Filter Mobileconfig profile that you created in Creating a Mobileconfig profile. Click OK.
    5. Click Create.

    6. Go to Assignments, then select the desired groups/users/devices to enable Web Filter for.
    7. After enrolling the iOS device to the Intune portal, ensure that the device receives the Web Filter Mobileconfig profile:
      1. On the device, go to Settings > General > Device Management.
      2. In the management profile, go to Restrictions.
      3. Verify that the Plug-In Bundle ID field contains the following URI: com.fortinet.forticlient.fabricagent.
Previous
Next