MEM Installation

MEM (Microsoft Endpoint Manager, aka Intune) is the tool that we use to manage devices. This document provides a step-by-step guide on how to install it on your device.

MacOS

  1. Create a new Apple ID using your company email. Use it during the configuration phase of your MacBook
  2. During the configuration phase, you’ll be asked to enable disk encryption: don’t do it. It will be enforced automatically by MEM
  3. When setup is complete, install MEM through this link log in with your company credentials: at this point you will inherit company policies.
  4. We suggest to reboot your laptop for some policies to kick in.
  5. Install the desktop Teams app from microsoft-teams website.

[!Note] When prompted with the login kechain access request, make sure to check "always allow" instead of "allow", otherwise you'll be prompted back to the same request.

Reach out Internal IT to check that installation is complete or if you need help.

Windows

It may be necessary to unplug all USB devices (charger, keyboard, mouse, etc.) until the procedure is complete, in order to avoid device compliance issues.

  1. Click on start, and look for windows store and click inside
  2. Search for company portal, download and install
  3. Enter the company portal, log in with your company credentials and follow the procedure accepting all the permissions.
  4. We suggest to reboot your laptop for some policies to kick in.
  5. Install the desktop Teams app from microsoft-teams website.

For windows users, TPM must be enabled to be policy compliant. If your laptop is still marked as non-compliant, this is likely to be the cause. TMP is a feature that is enabled in the BIOS, therefore it’s enablement depends on the manufacturer. Here the procedure the two most common PCs used in AgileLab.

Dell

How to access the bios:

-    Turn off the system
-    Turn on the system.
-    When the Dell logo screen appears, press the F2 key to enter System Setup.
-    Once you have accessed the system BIOS, go to security, go to the PTT Security section and uncheck Intel Platform Trust Technology.
-    At this point always go to security, TMP Security and select TPM Security.
-    Apply and save the settings.
-    Exit the BIOS and boot the operating system normally.

Asus

  • Turn off the system, turn on the system.
  • When the Asus logo screen appears, press the F2 key to enter system setup.
  • Once you have logged into the BIOS system, go to security, go to TMP Security and select TPM Security.
  • Apply and save the settings.
  • Exit the BIOS and boot the operating system normally.

Reach out Internal IT to check that installation is complete or if you need help.

Android

For android mobile phones, you just need to install the app “Company portal/Portale Aziendale” from your device default store.

Once the installation is complete you’ll be able to install new apps (teams, outlook, etc.) from a new play store. All apps (including the play store) can be recognized by a “lock” icon. Play store contains only approved apps. If you need an app which is not listed there, please reach out Internal IT.

iOS

For iOS mobile phones, you just need to install the app “Company portal/Portale Aziendale” from your device default store.

The Select device and enrollment type screen appears and prompts for your device type:

  • Tap Agile Lab owns this device if you received your device from Agile Lab.
  • Tap Secure entire device if it’s your personal iphone.

From this point on, office365 apps will be protected by

© AgileLab https://www.agilelab.it/

Found an error in the handbook? The source code can be found here. Please feel free to edit and contribute a merge request
Modified at: 2025-05-31 22:45:50

results matching ""

    No results matching ""