Bitwarden is a password manager that can be used to securely store, manage, and share confidential and sensitive information such as passwords, credit card details, secure notes, and more. You can download the Bitwarden app for Windows, Mac, and Linux devices and deploy it via Intune.
In this blog post, we will explore the deployment of the Bitwarden app on Windows 10/11 devices. The deployment process is fairly straightforward, as it involves utilizing the already available Microsoft Store app in UWP format.
The Microsoft Store (new) app deployment simplifies the process of deploying and updating applications compared to the Win32 app deployment type. Microsoft Store apps offer pre-packaged applications that you can easily browse, deploy, and monitor through Intune. One of the key advantages of this method is that apps deployed this way are automatically kept up to date whenever a new version becomes available.
Prerequisites for deploying Bitwarden App using Intune
As we are using Microsoft Store app (new) method for deploying Bitwarden application on Windows 10/11 devices. Therefore, Microsoft Store app prerequisites will apply:
| Prerequisites | |
|---|---|
| Client devices must have at least 2 processors | ✅ |
| Client devices must support Intune Management Extension (IME) for Installing Microsoft Store apps. | ✅ |
| Client devices must have access to Microsoft Store for Installing the app. | ✅ |
Create deployment for Bitwarden App
To create a deployment for Bitwarden application for Windows 10/11 devices, please follow below steps:
- Sign in to the Intune admin center > Apps > Windows > Add.
- On App Information tab, Click on Search the Microsoft Store app (new) and search for Bitwarden app. Select the app to proceed to the next step.
- After you select the app, Most of the Information will be populated for you. You can choose the Installation behavior as System or User. Depending upon the type of deployment you want to create.
- System – When you select system as Install behavior, it will install the application in System context making it available for all users on the target device.
- User – When you select user as Install behavior, the application will be installed in user context and will be available only for the currently Signed in user.
- On Assignments tab, click on Add group and then provide the Entra security group containing Windows devices, you can also deploy it to Entra security group containing Users, as we have selected User context as Install behavior in the previous step. But assigning the app to devices will also work fine even if the Install context is User.
- Click Create on Review + create tab to create the App deployment.
Sync Intune Policies
The device check-in process might not begin immediately. If you’re testing this policy on a test device, you can manually kickstart Intune sync from the device itself or remotely through the Intune admin center.
Alternatively, you can use PowerShell to force the Intune sync on Windows devices. Restarting the device is another way to trigger the Intune device check-in process.
End User Experience
After the application is assigned to target devices and Intune sync has been completed. The application will be installed. To find the application, Simply search for the application in start menu.
