Intune Integration - Installation and User Guide - TeamViewer Support
<main>
<article class="userContent">
<p><br></p><h2 data-id="general">General</h2><div class="blockquote"><div class="blockquote-content"><p class="blockquote-line"><em>Please keep in mind that Integrations are not included in basic license packages. They have to be purchased separately as AddOns. For more information, please visit our website: </em><a href="http://www.teamviewer.com/integrations" rel="nofollow noreferrer ugc"><em>http://www.teamviewer.com/integrations</em></a></p></div></div><p>The TeamViewer-Intune integration aims to enable IT Administrators to remotely administer an Intune-managed device, providing remote assistance to information workers.</p><p>Through the troubleshooting portal, Admins will:</p><ul><li>Remotely troubleshoot issues such as licensing, enrollment, compliance, and even app installation failures. </li><li>Perform remote tasks such as managing mobile apps, file transfer system logs, viewing device system information, and monitor hardware performance, including CPU utilization, RAM usage, and device storage information.</li><li>Save time, cut travel costs for on-site, in-person service calls and maintenance</li></ul><p><br></p><h3></h3><h2 data-id="audience">Audience</h2><p>This document intends to address Intune IT Admins and Help Desk support staff.</p><p><br></p><h3 data-id="-1"></h3><h2 data-id="prerequisites">Prerequisites</h2><p>It is assumed that the reader is familiar with using Intune in Azure.</p><ul><li>Valid TeamViewer account with eligible license. <em>To sign up, please visit: </em><a href="https://login.teamviewer.com" rel="nofollow noreferrer ugc"><em>https://login.teamviewer.com</em></a></li><li>Intune product license assigned to Intune administrator account. </li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/X4AYQLMTV0HG/1-intune-license-photo1.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/X4AYQLMTV0HG/1-intune-license-photo1.png" alt="1 - intune license photo1.png" height="699" width="1467" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<p><br></p><ul><li>Adequate permissions. The Intune administrator in the Endpoint Manager admin center must have the following InTune roles:</li><li>Update Remote Assistance: Allows administrators to modify the TeamViewer connector settings.</li><li>Request Remote Assistance: Allows administrators to start a new remote assistance session for any user. Any Intune role within a scope does not limit users to this role. Also, users or device groups assigned an Intune role within a scope can request remote assistance.</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/ZWA9KFKDJUJX/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/ZWA9KFKDJUJX/image.png" alt="image.png" height="592" width="1434" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<ul><li><strong>Microsoft Endpoint --> Tenant Administration --> Roles - All roles --> Intune roles – Permissions --> Remote tasks</strong>:</li><li><strong>Request Remote Assistance</strong>: Initiates a remote assistance session with a user's device by using TeamViewer. TeamViewer must be configured for your tenant. Remote assistance with TeamViewer supports Windows MDM-managed PCs, and Android PCs. HoloLens, Surface Hub, and Windows 10 S devices are not supported.</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/6RHU6SO1GKTK/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/6RHU6SO1GKTK/image.png" alt="image.png" height="595" width="1452" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<p><br></p><h3 data-id="-2"></h3><h2 data-id="software-requirements-supported-devices">Software Requirements & Supported devices</h2><ul><li>Supported administrator platforms establishing outgoing connections via TeamViewer Full Client App: Windows, macOS, Linux, iOS, Android.</li><li>Supported information worker endpoint platforms allowing incoming connections via QuickSupport App are:</li><li>Windows MDM-managed PCs (Windows devices that are enrolled using "userless" methods, such as DEM and WCD, don't show the TeamViewer notification in the Company Portal app.)</li><li>Android device administrator (DA)</li><li>Android Enterprise personally owned devices with a work profile (BYOD) (dedicated and fully managed Android devices are not supported)</li><li>macOS</li><li>iOS</li></ul><p>HoloLens, Surface Hub, and Windows 10 S devices are not supported.</p><p>The Company Portal App is required to receive/allow the remote request. You cannot use the integration for devices managed with InTune app.</p><p><br></p><h3 data-id="-3"></h3><h2 data-id="key-features">Key Features</h2><p>The TeamViewer integration in Intune offers key features and workflows:</p><ul><li>Allowing IT admins to initiate remote sessions in the Intune dashboard seamlessly.</li><li>Notifying Information workers of remote requests via the Company Portal App.</li><li>Supporting multiple, simultaneous tabbed sessions to Intune-managed devices.</li><li>Mass deploying unattended access to Windows and Android devices.</li><li>Securing all sessions using RSA public/private key exchange and AES 256-bit encryption.</li></ul><p>The integration benefits administrators, streamlining remote administration when support cases surface, and the TeamViewer Connector is pre-built into the Intune platform. No separate installation is necessary!</p><p><br></p><h3 data-id="-4"></h3><h2 data-id="about-this-manual">About this manual</h2><p>This manual describes enabling the TeamViewer Connector and initiating the remote assistance request to Intune-Managed devices. It also provides an overview of the various features provided by the integration.</p><p><br></p><h3 data-id="-5"></h3><h2 data-id="teamviewer-client-installation">TeamViewer Client Installation</h2><p>Administrators need to install the TeamViewer full client on their laptops. To install the TeamViewer App, follow the below steps:</p><p>1) Download the TeamViewer installer for your OS by invoking the following URL: <a href="https://www.teamviewer.com/en/download/" rel="nofollow noreferrer ugc">https://www.teamviewer.com/en/download/</a></p><p>2) Run the downloaded application. Choose the “Basic Installation” option as shown below and then click the “Accept – Finish” button</p><p>3) If the User Account Control dialog pops up, click the “Yes” button. TeamViewer installation will proceed and be complete.</p><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/U3H0ZUY2LA2R/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/U3H0ZUY2LA2R/image.png" alt="image.png" height="531" width="583" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<p><br></p><h3 data-id="-6"></h3><h2 data-id="enabling-teamviewer-connector">Enabling TeamViewer Connector</h2><p>The TeamViewer integration in Intune is pre-built, only requiring the end user to enable the integration and link their TeamViewer account.</p><p>Please make sure the prerequisites have been met.</p><p>To enable the TeamViewer integration:</p><ul><li>Users should go to set up the TeamViewer Connector, access devices, and create client apps.</li><li>The TeamViewer Connector is located in Endpoint Manager Admin --> Tenant Administration --> Connectors and tokens --> Cross Platform --> TeamViewer Connector, as shown in the screenshot below:</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/S86SK3MUMTG2/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/S86SK3MUMTG2/image.png" alt="image.png" height="694" width="995" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<ul><li>Administrators will be redirected to TeamViewer to enter TeamViewer credentials and accept the required permissions:</li><li>Next, authorize Intune access to the TeamViewer account by choosing: ‘Log in to TeamViewer to authorize’:</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/IYNH281EQTS5/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/IYNH281EQTS5/image.png" alt="image.png" height="757" width="1656" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<ul><li>Authorized TeamViewer accounts will be redirected to Microsoft Intune, requiring sign-in with Microsoft credentials:</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/Y2M0RBUCH3P4/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/Y2M0RBUCH3P4/image.png" alt="image.png" height="654" width="814" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<ul><li>Once successful, a confirmation message stating: ‘’ will display and the connection status showing green ‘Active’.</li></ul><p><strong>If users experience an error message after this step, please ensure a proper Intune license is associated with the account. Please see the section ‘Prerequisites’ for further information.</strong></p><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/Z8CN5HQOV7RR/teamviewer-connector.gif" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/Z8CN5HQOV7RR/teamviewer-connector.gif" alt="TeamViewer_connector.gif" height="499" width="999" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<p><br></p><h2 data-id="request-remote-assistance">Request Remote Assistance</h2><p>To remotely administer an Intune-managed device, administrators will need to select a device via Microsoft Endpoint Manager “Devices” > “All Devices”. In this use case, we will be requesting remote assistance to a user’s device through the Microsoft Endpoint Manager Remote Assistance session option.</p><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/U3KIP2SUXK37/9-intune-remote-assistance-photo-devices.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/U3KIP2SUXK37/9-intune-remote-assistance-photo-devices.png" alt="9 - intune remote assistance photo - devices.png" height="640" width="1565" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<p><br></p><ul><li>Once IT selects the problematic device, they can view the full dashboard listing the device status and initiate ‘New Remote Assistance Session’ to the user’s device by selecting ‘…More’ in the top right corner.</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/FDCGVXJXK9K6/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/FDCGVXJXK9K6/image.png" alt="image.png" height="700" width="1480" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<ul><li>When the remote assistance session has been generated, ‘Start Remote Assistance’, will appear, bringing the Admin into the waiting portal until the end user accepts the request.</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/OFPA2Q8VEJ3B/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/OFPA2Q8VEJ3B/image.png" alt="image.png" height="695" width="1650" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<ul><li>On the remote side, the Company Portal App’s flag notification prompts the IW to accept the request and confirm to allow remote control.</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/9QFCQKKB7F07/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/9QFCQKKB7F07/image.png" alt="image.png" height="635" width="1448" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/LZC8CUH4FQ9I/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/LZC8CUH4FQ9I/image.png" alt="image.png" height="529" width="415" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/MTUUO4ET4RG9/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/MTUUO4ET4RG9/image.png" alt="image.png" height="397" width="422" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/EC8CC69SJ25X/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/EC8CC69SJ25X/image.png" alt="image.png" height="610" width="423" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/4IRNOP7666IH/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/4IRNOP7666IH/image.png" alt="image.png" height="689" width="871" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<p>📌<strong>Note</strong>: If TeamViewer is installed, the device will redirect to the installed application. If no TeamViewer is installed, the device will prompt to download the Quick Support version of TeamViewer to be able to make the connection with the device.</p><p>📌<strong>Please note:</strong></p><ul><li>Remote assistance is for attended access requiring end-user interaction.</li><li>Remote sessions take place via TeamViewer QuickSupport App, which is added in Intune>Client Apps as a LOB or Managed App.</li><li>TeamViewer Host on Windows OS will only accept remote assistance requests if installed.</li><li>The QuickSupport App and Add-On for mobile devices must be installed prior to a remote session can take place.</li><li>If QuickSupport App is not installed before the remote request, then the end user will automatically be taken to App Store to download after accepting remote assistance.</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/1HYA0YD0LDTR/teamviewer-connection-281-29.gif" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/1HYA0YD0LDTR/teamviewer-connection-281-29.gif" alt="TeamViewer_connection (1).gif" height="930" width="1862" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<p><br></p><h2 data-id="deploying-teamviewer-msi-package">Deploying TeamViewer MSI Package</h2><p>TeamViewer offers an MSI deployment package to install TeamViewer Full Clients or Host modules to your entire network of Windows 10 devices silently, without IT staff leaving their desks or requiring manual actions from end users. </p><p>📌Please note:</p><ul><li>Deploying TV MSI packages does require a TeamViewer Corporate subscription, and the TeamViewer full client is needed to view the managed device(s).</li><li>If the Host is installed on users’ devices, IT admins can still request remote assistance with attended access, allowing the session to be passed through the Company Portal App.</li></ul><p>When deploying the MSI as a Line-of-Business App, IT Admins can use command-line switches to:</p><ul><li>Apply the settings of a <a href="https://community.teamviewer.com/t5/Knowledge-Base/TeamViewer-Host-setup/ta-p/3965" rel="nofollow noreferrer ugc">Custom Host</a> automatically, including a specific settings policy</li><li>Assign the installed host to an account, and</li><li>Enable <a href="https://community.teamviewer.com/t5/Knowledge-Base/All-about-passwords/ta-p/28442#toc-hId-1472882132" rel="nofollow noreferrer ugc">Easy Access</a> for unattended access</li></ul><p>Steps to deploy MSI package:</p><ul><li>As a prerequisite, we will need to enter the TeamViewer with the Master admin account or the account of the main TeamViewer administrator. Don’t have a Master admin account? See on why and how you can use one for TeamViewer configuration and central administration.</li><li>On the left side of the screen, choose the Design & Deploy section. Then, in the top right corner of the page, click the Add Host button. In the drop-down menu that appears, choose Host.</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/X74HNEO3NQAB/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/X74HNEO3NQAB/image.png" alt="image.png" height="700" width="1046" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<p>In the configuration screen, you can customize the Host module. The following visual customizations are available for your customized Host:</p><ul><li><strong>Title</strong>: You can edit the window title.</li><li><strong>Text</strong>: You can edit the welcome text in the main window.</li><li><strong>Logo</strong>: Select your logo, which will be displayed in the top part of the main window.</li><li><strong>Text Color</strong>: You can edit the font color. Click in the left field to display a color box and select a color.</li><li><strong>Background color</strong>: You can edit the background color. Click in the left field to display a color box and select a color.</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/WLIZR74NYU7O/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/WLIZR74NYU7O/image.png" alt="image.png" height="699" width="1128" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<h3 data-id="custom-host-settings">Custom Host Settings</h3><p>The following settings are available on the custom Host module: </p><ul><li><strong>Name</strong>: Serves to identify the modules in the overview of your customized modules.</li><li><strong>Automatically add computers to a group in your Computers list</strong>: If the box is checked, every device installed on the TeamViewer Host module will be automatically added to the selected group within your Computers & Contacts list. Select a group for these devices from your Computers & Contacts list. </li><li><strong>Allow users to create a service request</strong>: If the box is checked, users of the TeamViewer Host module can start a service case for spontaneous support. For this, a Help me Button will be visible on the Host module when your customer opens the module. Select a group name for these computers in your Computers & Contacts list.</li><li><strong>Default assignee</strong>: You can select a default assignee for all service cases created with this customized Host</li><li><strong>Allow customers to initialize chat</strong>: A chat box appears in which your customers can send a message before the connection.</li><li><strong>TeamViewer policy</strong>: Assign a TeamViewer settings <a href="https://community.teamviewer.com/t5/Knowledge-Base/How-to-add-a-new-settings-policy/ta-p/4860" rel="nofollow noreferrer ugc">policy</a> to the device. The settings defined within the policy are set for the module during installation.</li><li><strong>Allow account assignment via the Assignment Tool</strong>: Account assignment without confirmation will activate <a href="https://community.teamviewer.com/t5/Knowledge-Base/All-about-passwords/ta-p/28442#toc-hId-1472882132" rel="nofollow noreferrer ugc">easy access </a>automatically </li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/4RGIET8CZ7Q6/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/4RGIET8CZ7Q6/image.png" alt="image.png" height="692" width="1128" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<ul><li>Once you have configured your custom Host to your liking, click the Save button in the lower-right corner. A dialog will appear with a custom download link for the EXE version of the Host and an API token to be used during the MSI Deployment.</li><li>Copy these items and document them for later use in your deployment. Once documented, click OK in the bottom-right corner to close the dialog and return to the Design and Deploy page.</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/G2E55LDVSSWC/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/G2E55LDVSSWC/image.png" alt="image.png" height="403" width="599" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<ul><li>On the Design and Deploy page, you will see your new Custom Host in the list. Move your mouse over the row for the host and move to the right edge. Click the Edit button that appears to edit your custom Host settings. </li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/HZSCP8UD6AK6/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/HZSCP8UD6AK6/image.png" alt="image.png" height="56" width="944" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<ul><li>In the Edit dialog, new information in the lower-right corner will be needed for deployment. You may need to scroll the dialog to see it as pictured below. At the bottom of this section will be a line called the Configuration ID. This string will be needed for the MSI deployment command, so copy and document this string for later use</li><li>You can then click the link titled Download MSI. This will download a ZIP file containing generic MSI installers for both the Host (<em>TeamViewer_Host.msi</em>) and the full Client (<em>TeamViewer.msi</em>).</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/6AHDFGXLR4SK/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/6AHDFGXLR4SK/image.png" alt="image.png" height="693" width="1132" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<ul><li>Now that the MSI file and the deployment parameters are available, we can move to create the package in Intune.</li><li>In the Intune dashboard, we navigate to the Client Apps section, choose Add, and for App type, select Line-of-Business App.</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/GU3MIESIR6GT/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/GU3MIESIR6GT/image.png" alt="image.png" height="701" width="886" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<ul><li>Under the App package file, open the file explorer and select the previously downloaded and extracted MSI file named <em>TeamViewer_Host.msi</em>. Configure details defining a description for the App, input TeamViewer as the trusted publisher, and, most importantly, paste the required command-line parameters.</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/MXRWCLAS8HF0/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/MXRWCLAS8HF0/image.png" alt="image.png" height="678" width="1870" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/10MHOY08EC5J/command-line-arguments.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/10MHOY08EC5J/command-line-arguments.png" alt="Command line arguments.png" height="1047" width="1037" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<p>Here is a recommended command line to install the custom Host created earlier in this article. Replace <strong>%YOURAPITOKEN%</strong> and <strong>%YOURCUSTOMCONFIGID%</strong> with the API token and Configuration ID you previously saved and documented. For Unattended Access, please add the parameter below:</p><pre class="code codeBlock" spellcheck="false" tabindex="0">/qn CUSTOMCONFIGID=%YOURCUSTOMCONFIGID% APITOKEN=%YOURAPITOKEN% ASSIGNMENTOPTIONS="--alias %COMPUTERNAME% --grant-easy-access --reassign"
</pre><p>More deployment details, installation switches, and options are available at this link in our full MSI deployment article.</p><ul><li>After saving the parameter, manage the assignment as ‘required’ to silently force the installation, select a group of devices, and confirm all changes have been saved.</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/8CHWEP2MOH31/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/8CHWEP2MOH31/image.png" alt="image.png" height="715" width="1441" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<ul><li>Then save the app, and the devices will start to install.</li><li>Monitoring the installation status; confirming the deployment was successful, we cross-reference the device’s hostname and secure unattended access from the TeamViewer full client.</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/AMHLTJ5I832I/27-41-intune-mass-deploy-confirm-full-client.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/AMHLTJ5I832I/27-41-intune-mass-deploy-confirm-full-client.png" alt="27 - 41 - intune mass deploy confirm full client.png" height="790" width="1551" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<p><br></p><p>Video demonstrations below:</p><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/LCSHDD4QBBJE/intune-add-msi-cmd-line-parameter-281-29.gif" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/LCSHDD4QBBJE/intune-add-msi-cmd-line-parameter-281-29.gif" alt="Intune add MSI cmd line parameter (1).gif" height="1055" width="1905" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<p><br></p><h2 data-id="mass-deploy-android-host">Mass Deploy Android Host</h2><p>Through Intune’s EMM system - supporting App Configuration Policies for Managed Apps, Admins can deploy the TeamViewer Host App to support Android phones and tablets. Devices include Samsung, Asus, Honeywell, Caterpillar, Lenovo, Sony, and more…. Please check the following <a href="https://community.teamviewer.com/English/kb/articles/4730-supported-manufacturers-for-remotely-controlling-android-devices" rel="nofollow noreferrer ugc">Community article</a> for a list of supported devices and Add Ons. </p><p>Once the Android Host is deployed, in addition to remote view & remote control, TeamViewer enables chat support, secure file transfer, viewing system information, and the ability to stop or uninstall problematic Apps. Admins can now benefit from accessing unattended devices used as POS systems or Kiosks.</p><h3 data-id="deploy-android-host%3A">Deploy Android Host:</h3><ul><li>We will need to enter the TeamViewer with the Admins account as a prerequisite.</li><li>Navigate to the top right corner and choose ‘Add Android Host.’</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/I26BIYTON018/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/I26BIYTON018/image.png" alt="image.png" height="749" width="1483" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<ul><li>In the configuration, the screen defines a name for the module and select a group where the managed device will display. Make sure to copy the configuration link after saving the module for later steps.</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/MHA706KSD89G/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/MHA706KSD89G/image.png" alt="image.png" height="559" width="866" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<ul><li>Navigate to <strong>Endpoint Manager</strong> --> <strong>Tenant Administration</strong> --> <strong>Android </strong>-> <strong>Managed Google Play</strong> to ensure you have linked your managed Google Play account to Intune, granting permission to send both user and device information to Google.</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/FPCNK8OFKN5P/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/FPCNK8OFKN5P/image.png" alt="image.png" height="715" width="1300" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<ul><li>open Managed Google Play store</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/2NLXGS7QGG7M/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/2NLXGS7QGG7M/image.png" alt="image.png" height="713" width="1305" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<ul><li>In the Play Store, the Admin will search for the TeamViewer Host App and make sure it is approved as a Managed App along with any other Add Ons specific to your devices to allow the full control feature.</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/731KSST1HEQE/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/731KSST1HEQE/image.png" alt="image.png" height="631" width="820" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<ul><li>Once synchronized, the Managed App will appear in the Intune dashboard, and the Admin will verify the required App is assigned to a group containing the intended devices for deployment.</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/CII54FIJTB2G/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/CII54FIJTB2G/image.png" alt="image.png" height="743" width="1003" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<ul><li>Using our saved ConfigID from previous step 3, add an App Config Policy including the name, description, and Managed device as an enrollment type.</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/OXU0YH7EJ6QI/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/OXU0YH7EJ6QI/image.png" alt="image.png" height="746" width="1222" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/K5G5AIDXBJ7F/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/K5G5AIDXBJ7F/image.png" alt="image.png" height="754" width="1215" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/UY8FARVZRDVQ/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/UY8FARVZRDVQ/image.png" alt="image.png" height="756" width="951" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<ul><li>After choosing Android as the platform and selecting the associated App, configure permissions using the configuration designer or JSON editor.</li><li>In this example, we use the configuration designer, adding the value type as ‘string’ and pasting the ConfigID as the configuration value.</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/32TTALJACJA7/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/32TTALJACJA7/image.png" alt="image.png" height="756" width="961" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<p>TeamViewer uses the device serial number as a default name value. However, you can also use different variables, as seen below: </p><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/C8YOQZM4Z08G/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/C8YOQZM4Z08G/image.png" alt="image.png" height="351" width="752" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<p>There are other options in the Configuration Designer, this is out of the scope of this article. Tensor Licensed customers may refer to an article in that KB for more information. </p><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/FAFJMKV1O838/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/FAFJMKV1O838/image.png" alt="image.png" height="689" width="1861" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<p>Lastly, assign the scope to the same mobile device group in the mobile app deployment scope.</p><ul><li>The Host will install as a Managed App under a work profile</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/WPMZ3HN9EZKV/40-intune-android-deploy-confirm.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/WPMZ3HN9EZKV/40-intune-android-deploy-confirm.png" alt="40 - intune android deploy confirm.png" height="685" width="1329" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<p><br></p><ul><li>Opening the TV Full Client, we select the assigned group, double-click the managed device and perform remote administration.</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/3D1QKRFB8SS4/27-41-intune-mass-deploy-confirm-full-client.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/3D1QKRFB8SS4/27-41-intune-mass-deploy-confirm-full-client.png" alt="27 - 41 - intune mass deploy confirm full client.png" height="790" width="1551" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<p><br></p><p>⚠<strong>Important</strong>: Please make sure that default ‘Device Type Restrictions’ is not blocking ‘Android work profile,’ and the permissions are configured to Allow</p><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/4DMC8KT0YQQG/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/4DMC8KT0YQQG/image.png" alt="image.png" height="750" width="1575" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/KV2CJ5NCEN1N/image.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/KV2CJ5NCEN1N/image.png" alt="image.png" height="423" width="946" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<p>Video demonstrations below:</p><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6032394/uploads/UPNO7XYX6EGB/mobile-deploy-281-29.gif" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6032394/uploads/UPNO7XYX6EGB/mobile-deploy-281-29.gif" alt="mobile deploy (1).gif" height="1080" width="1980" loading="lazy" data-display-size="large" data-float="none"></img></a>
</div>
</div>
<p><br></p>
</article>
</main>