SureMDM

Create an Enterprise App Store (Windows)

Prerequisite

Azure AD enrollment for Windows and Microsoft Windows Store for Business have to be enabled to create enterprise app store.

To create an enterprise App Store, follow these steps:

1.  Login to portal.azure.com.

2.  Select Azure Active Directory.

3.  Click Properties and copy Directory ID.

4.  Navigate to SureMDM Web Console > Settings > Account Settings > Device Enrollment Rules.

5.  Under Microsoft Windows Store for Business, in the Tenant ID field, paste the Directory ID copied in step no.3. 

6.  Click Validate. 

     Tenant ID pasted here will be validated. 

7. Once again navigate to Azure Portal. 

8. Click Azure Active Directory > Mobility (MDM and MAM).

      a. Click Add Application and select On-Premises MDM application.

      b. Enter the Application Name and click Save.

          For example: SureMDM Application

9. Click SureMDM Application and enter below details:

MDM User scope: All 

MDM terms of use URL: https://<Server path>/suremdm/Windows/View/TermsOfUse.aspx 

Example:https://onpremisetest.42gears.com/suremdm/Windows/View/TermsOfUse.aspx

MDM discovery URL: https://<Server Path>/suremdm/EnrollmentServer/discovery.svc

      Example: https://onpremisetest.42gears.com/suremdm/EnrollmentServer/discovery.svc

10. Click On-premises MDM application settings and select Properties.

11.  Enter Console URL (https://<Server path>) in App ID URI and copy Application ID and click Save.

       Example: https://onpremise.42gears.com.

12. Select Keys and enter Key Description, select Duration and click Save.

Note: Copy and paste the generated Key. If this window is closed, the generated key cannot be fetched again.

13. Navigate to Azure Active Directory > Mobility (MDM and MAM) > Microsoft Intune.

14. Enter the below details:

MDM user scope: All

MDM terms of use URL: https://<Server path>/suremdm/Windows/View/TermsOfUse.aspx

Example: https://onpremisetest.42gears.com/suremdm/Windows/View/TermsOfUse.aspx

MDM discovery URL: https://<Server Path>/suremdm/EnrollmentServer/discovery.svc

      Example: https://onpremisetest.42gears.com/suremdm/EnrollmentServer/discovery.svc

15. Click Save.

16. Navigate to SureMDM Web Console > Settings > Account Settings > Device Enrollment Rules.

17. In the Application ID field, paste the Application ID copied in step no.11.

18. In Application Secret text field, paste the key value copied in step no.12 and click Apply.

19. Navigate to Windows devices’ Settings. Under Accounts, select Access work or school > Connect.

20. Enter Email address and Password. 

      Complete all the on-screen steps.

Note: Ignore the step for setting the pin.

21. Navigate to the browser and type the below URL:

https://businessstore.microsoft.com/en-us/store/private-store

22. Login with Azure Portal credentials.

23. Click Shop for my group.

24. Select applications to approve and click Get the app.

25. Click on the enterprises' (...) option and select Edit collection.

26. Click Add to add the approved applications to the collection.

27. Navigate to SureMDM Web Console > App Store > Windows > Add new app.

28.  Select an option from Select Options to add an application:

• msi File - Enter the URL to upload the MSI file. 
• Microsoft Store for Business - Click Sync, wait 1-2 minutes, then click Refresh. All the approved applications will be listed. Select an application and click Add.
• Link - Enter the Name, URL, Category, and Description of the application and click Add. 

      Wait for 1-2 minutes and click Refresh. All the approved applications will be listed.

      Once the apps are successfully added, the applications will start reflecting in the App Store screen.