Share via

Edge OMA-URI multi list string syntX for Exempt Domain File Type Pairs download warnings

TofuSteak 1 Reputation point
2022-02-21T00:42:27.513+00:00

Hi,

I'm trying to set the following edge ADMX setting ExemptDomainFileTypePairsFromFileTypeDownloadWarnings in intune, has anyone successfully set this in intune?

However I'm running into some difficulties with the syntax for OMA-URI, I've relied on these three resources
https://learn.microsoft.com/en-us/deployedge/microsoft-edge-policies#exemptdomainfiletypepairsfromfiletypedownloadwarnings_downstream_38042499
https://www.sifr.ca/post/intune-third-party-admx-oma-uri-step-by-step-part-3
https://learn.microsoft.com/en-us/deployedge/configure-edge-with-mdm#list-of-strings-data-type-examples

I've tried various different formats however from trial and error and rereading 100 times over this is what I think it should look like, but I'm still getting an error thrown up when trying to set it via intune. I believe I have the OMA-URI path correct, as I was able to pass a single entry, but when I try to add two entries it messes up.

OMA-URI: ./Vendor/MSFT/Policy/Config/MicrosoftEdge~Policy~microsoft_edge/ExemptDomainFileTypePairsFromFileTypeDownloadWarnings
Data type: string
Value: <Enabled/><data id="ExemptDomainFileTypePairsFromFileTypeDownloadWarningsDesc" value="1{"file_extension": "eml", "domains": ["contoso.com"]}2{"file_extension": "msg", "domains": ["contoso.com"]}"/>

I have managed to get it to work with the following for just a single entry: <Enabled/><data id="ExemptDomainFileTypePairsFromFileTypeDownloadWarningsDesc" value='1{"file_extension": "eml", "domains": ["contoso.com"]}'/>

Any advice or working examples would be greatly appreciated.

Microsoft Security | Intune | Configuration
Microsoft Edge | Microsoft Edge development
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Lu Dai-MSFT 28,496 Reputation points
    2022-02-22T03:09:18.653+00:00

    @TofuSteak Thanks for posting in our Q&A.

    For this issue, I have done the same test as yours in my lab. Honestly, it doesn't work and it shows error. However, I find there is a setting "Disable download file type extension-based warnings for specified file types on domains" in Administrative Templates profile. It seems the same configuration as the custom profile's.
    176632-image.png

    When I deploy it, it shows success and the values are added in Registry. So, it is suggested to try to perform it as a workaround.
    176652-image.png

    176576-image.png

    Hope it will give you some ideas.

    If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.