LibKey Nomad Intune Deployment (Edge)

Modified on Thu, 15 Aug at 3:08 PM

TABLE OF CONTENTS


Deploy Microsoft Edge Using Intune


(Note: This will deploy the latest version of Edge at the time of installation but will update on its own or at the interval you set moving forward)


Part 1: Log in to your Microsoft Intune Admin Center @ intune.microsoft.com


  1. On the left side of the screen, click on "Apps"
  2. Click on "All Apps"
  3. Click on "Add" to add a new app
  4. Select the App Type: "Windows 10 and later" under the "Microsoft Edge Version XX and later" category
  5. Confirm your selection
  6. Leave all of the default settings alone
  7. Click to continue to the next step (App Settings)
  8. Click to continue to the next step (Assignments)
  9. Choose "Add Group" under the required groups
  10. Search for the group(s) to whom this will be deployed
  11. Confirm your selection
  12. Click to continue to the next step (Review + Create)
  13. Review the Intune settings (groups, etc) and make any changes if needed for your organization
  14. Create the app


The app will now go through the creation process and be available in your Microsoft Intune Admin Center so that it can be deployed to machines.


Configure LibKey Nomad for Deployment

Part 1: Log in to your Microsoft Intune Admin Center @ intune.microsoft.com

  1. On the left side of the screen click on "Devices"
  2. Under "Manage Devices" click on "Configuration"
  3. Create a new policy
  4. Click on "New Policy"
  5. Under "Select Platform" click on "Windows 10 and later"
  6. Under "Profile Type" click on "Templates"
  7. Under "Template Name" click on "Administrative Templates"
  8. Confirm your selection
  9. Under "Name" type: LibKey Nomad Policy Setting
  10. Under "Description" type: LibKey Nomad Extension Setting - Control which extensions are installed silently
  11. Click to continue to the next step
  12. Under "Computer Configuration" click on "Microsoft Edge"
  13. Click on "Extensions"
  14. Click on "Control which extensions are installed silently"
  15. Click on "Enabled"
  16. In the blank box copy and paste the following: aegommgkkknipcpebmcbepdapjdojiji
  17. Confirm your selection
  18. Click to continue to the next step
  19. Click to continue to the next step, again
  20. Under "Included Groups" click "Add Groups"
  21. Search for the group(s) to whom this will be deployed
  22. Confirm your selection
  23. Click to continue to the next step
  24. Review the Intune settings (groups, etc) and make any changes if needed for your organization
  25. Create the policy



Create LibKey Nomad Intune Remediation

Part 1: Create & Edit the Powershell scripts to apply to your organization

  1. Open a new Powershell window and copy/paste the following script: (Note: You can use something like Powershell ISE or Visual Studio Code to create Powershell files)
<#
.DESCRIPTION
    Below Powershell script will Check the existence of
    Nomad registry Key.
    Author: Kris Carlson
    Site: thirdiron.com
    Version: 1.0.0
#>

<# NO EDITS NEEDED IN THIS SCRIPT #>

$regPath = "HKLM:\Software\Policies\Microsoft\Edge\3rdparty\extensions\aegommgkkknipcpebmcbepdapjdojiji\policy"
$value = Test-Path $regPath
if($value){
        Write-host "Reg Key already Exists. No Action Required"
        Exit 0
}
Else{
        Write-host "Reg Key does not exist"
        Exit 1    
}

2. Save the script as "Detect_reg_key.ps1"

3. Open a new Powershell window and copy/paste the following script:

<#
.DESCRIPTION
    Below Powershell script will Check the existence of
    Nomad registry Key. If it does not exist, It will create it and
    Also creates one registry entry under this key which is String Value.
    Author: Kris Carlson
    Site: thirdiron.com
    Version: 1.0.0
#>
$regPath = "HKLM:\Software\Policies\Microsoft\Edge\3rdparty\extensions\aegommgkkknipcpebmcbepdapjdojiji\policy"
$value = Test-Path $regPath

<# ONLY EDIT THE FOLLOWING TWO VARIABLES #>
$libraryId = "INSERT-LIBRARY-ID-HERE"
$buttonPlacement = "bottomLeft"
<# bottomLeft and bottomRight are the only buttonPlacement options available #>

<# DO NOT EDIT BELOW THIS LINE #>

$value
if(!$value){
     if($libraryId -match "^\d+$"){
     try{
        Write-Host "Creating Reg Key"
        New-Item -Path HKLM:\Software\Policies\Microsoft\Edge\3rdparty\extensions\aegommgkkknipcpebmcbepdapjdojiji -Name policy -Force | Out-Null
        New-ItemProperty -Path $regPath -Name 'libraryId' -Value $libraryId -PropertyType String | Out-Null
        #Next line lets you optionally set the Nomad Button Placement
        New-ItemProperty -Path $regPath -Name 'buttonPlacement' -Value $buttonPlacement -PropertyType String | Out-Null
        Exit 0
     }
     Catch {
            Write-Host "Error Creating Reg Key"
            Write-error $_
            Exit 1
      }
      }
      else{Write-Host "Invalid Libary ID Entered"}
}
Else{
        Write-host "Reg Key already Exists. No Action Required"
        Exit 0
    
}

4. Change the value for $libraryId from "INSERT-LIBRARY-ID-HERE to your Library ID (For Example: 1234) - (Note: This should be a numerical value only)

How to locate your Third Iron Library ID

Via BrowZine: Log in to BrowZine. Your Third Iron ID is the number in your library's BrowZine URL: 
https://browzine.com/libraries/###

Via LibKey.io: Log in to LibKey.io. Your Third Iron ID is the number in your library's LibKey URL: 
https://libkey.io/libraries/###

5. You may optionally change the value of $buttonPlacement from the default of "bottomLeft" to "bottomRight" if you would like to change the position of the LibKey Nomad Button whenever it appears on screen - (Note: This value is case sensitive) 

6. Save the script as "Remediate_reg_key.ps1"


Part 2: Log in to your Microsoft Intune Admin Center @ intune.microsoft.com

  1. On the left side of the screen click on "Devices"
  2. Under "Manage Devices" click on "Scripts and Remediations"
  3. Click to create a remediation
  4. Under "Name" type: LibKey Nomad Registry Settings
  5. Under "Description" type: LibKey Nomad Registry Settings - Configure the Library ID and Button Placement
  6. Click to continue to the next step
  7. For "Detection Script File" click on Select a file" 
  8. Locate the "Detect_reg_key.ps1" file that you created and double-click on it
  9. For "Remediation Script File" click on "Select a file"
  10. Locate the "Remediate_reg_key.ps1" file that you created and double-click on it
  11. Click to continue to the next step
  12. Click to continue to the next step
  13. Under "Included Groups" click "Select groups to include"
  14. Search for the group(s) to whom this will be deployed
  15. Click to confirm the selection
  16. Click to continue to the next step
  17. Review the Intune settings (groups, etc) and make any changes if needed for your organization 
  18. Create the remediation


Deploy Intune Changes

At this point, you will be able to force a sync of all devices in the groups you selected for deployment or simply wait for your next sync time which is usually anywhere from once per hour to once per day depending on how you've set up your Intune Device Check-In Settings.