Domain Deployment

You need to create two custom profiles in Intune (one for Chrome, one for Edge). Each profile contains two OMA-URI settings:

• Installation policy → tells the browser to force-install the extension.

• Configuration policy → applies your custom extension settings.

Step 1 – Open Intune and Start a New Profile

1. Go to Intune Admin Center.

2. Navigate to: Devices → Configuration profiles

3. Click on Create → Import Policy

4. Import the following file to deploy the extensions. This will deploy the configuration

Import File

Step 2: Configuration

Documentation to follow

1. Download the following from the Check repo on GitHub

   1. ​Deploy-ADMX.ps1

   2. ​Check-Extension.admx​

   3. ​Check-Extension.adml​

2. Run Deploy-ADMX.ps1. As long as you keep the other two files in the same folder, it will correctly add the available objects to Group Policy.

3. Open Group Policy and create a policy using the imported settings that can be found at Computer Configuration → Policies → Administrative Templates → CyberDrain → Check - Microsoft 365 Phishing Protection