AQUILA EDR Deployment Via All devices in Microsoft Intune

Deploying Endpoint Detection & Response (EDR) via Microsoft Intune

Overview

This guide explains how to install an Endpoint Detection & Response (EDR) solution on all devices managed through Microsoft Intune. The process ensures consistent protection across your organization’s endpoints by using Intune’s Endpoint security policies and app deployment features.

Prerequisites

Before beginning, confirm the following:

• You have Global Administrator or Intune Administrator rights in Microsoft 365.

• Devices are already enrolled and compliant in Microsoft Intune.

• You have the installer package (MSI, EXE, or IntuneWin format) for your chosen EDR solution.

• (Optional) A test group of devices or users for piloting the deployment.

---

 

Step 1: Prepare the EDR Installer

1. Obtain the official EDR installation package from your vendor (e.g., Microsoft Defender for Endpoint, SentinelOne, CrowdStrike).

2. If the installer is not in .intunewin format, convert it using the Microsoft Win32 Content Prep Tool.

   • Download tool: GitHub - microsoft/Microsoft-Win32-Content-Prep-Tool: A tool to wrap Win32 App and then it can be uploaded to Intune

Step 2: Add the EDR App to Intune

1. Sign in to the Microsoft Intune admin center → https://intune.microsoft.com
   

2. Go to:

• Apps

 

• All apps

• Add

 

1. Select the app type:

   • Windows app (Win32) for most EDR installers.

2. Upload the prepared installer package.

3. Configure App Information: name, description, publisher.

4. Set Program Install/Uninstall Commands.

5. Under Requirements, select OS architecture and minimum version.

6. (Optional) Add Detection Rules to confirm successful installation.

Step 3: Assign the EDR App to Devices

1. In the app’s Assignments section:

   • Select Required → choose the group containing all corporate devices.

   • (Optional) For testing, assign first to a pilot group before rolling out to all devices.

2. Save and review deployment settings.

Step 4: Monitor Deployment

1. In the Intune admin center, go to Apps → select your EDR app.

2. Check Device install status to confirm successful installations.

3. If errors occur, review installation logs via the Intune Management Extension on endpoints.

 

Relevant Microsoft Documentation

• Win32 app management in Microsoft Intune | Microsoft Learn

• Monitor app information and assignments - Microsoft Intune | Microsoft Learn