What's the syntax for wildcards in the Edge proxysettings policy in InTune?

Martin Tredwell 5 Reputation points
2023-06-01T15:33:21.3466667+00:00

I've been staring at this issue all day, so am turning to the great hive mind for help!

Trying to deploy some edge proxy settings to Windows 10 clients running edge 131.x, via InTune... I want to set a proxy server, and a proxy bypass list, with a couple of domains, and any associated sub domains...

So in Intune I'm:

  1. creating a new configuration profile
  2. Platform = Windows 10 and later
  3. Profile type = Templates
  4. Template name = Administrative Templates
  5. Naming it
  6. Then navigating to Computer config - edge - proxy server - proxy settings
  7. Enabling that and adding a string along the lines of

{ "ProxyMode": "fixed_servers", "ProxyServer": "192.168.1.100:8080", "ProxyBypassList": "*.myinternaldomain.com"}

The problem is that it doesn't seem to recognise the normal * wildcard, and any traffic for xxxx.myinternaldomain.com gets routed to the proxy.

If I set the string to { "ProxyMode": "fixed_servers", "ProxyServer": "192.168.1.100:8080", "ProxyBypassList": "server1.myinternaldomain.com,server2.myinternaldomain.com"} it accepts each individual bypass entry ok. However I really don't want to have to list every internal host individually.

How do I use a wildcard in this instance?

I've tried https://*.myinternaldomain.com, *myinternaldomain.com *.myinternaldomain.com nothing seems to work, and I can't find any helpful information on Microsoft documentation, all of the examples use single domains for example https://www.microsoft.com only, no suggestion for wildcarding.

Many Thanks.

Microsoft Security | Intune | Other
Microsoft Edge | Microsoft Edge development
{count} vote

1 answer

Sort by: Most helpful
  1. Sander 5 Reputation points
    2023-06-06T16:58:14.01+00:00

    I have finally figured it out, you will need to add 2 entries per domain, one with wildcard and one without, like this:
    { "ProxyMode": "fixed_servers", "ProxyServer": "192.168.1.100:8080", "ProxyBypassList": "*.myinternaldomain.com,myinternaldomain.com"}

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.