![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 73%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENM%3C/text%3E%3C/svg%3E)
Microsoft Security | Intune | Other
Other Intune-related topics, including unsupported scenarios and platform-specific behaviors
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 30%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
@nasha mehr , For your questions here are my answers:
Q1: I would like to allow users to run an application without give them administrator privilege. How can I do that?
A1: If the application running needs admin permission, you need to give the user administrator privilege. Because permission is needed on OS level. Intune can't control it. But if you want to install the application, we can deploy it via Intune and use system account to install it.
Q2: How can I allow application through firewall or endpoint security in Intune? I created inbound and outbound rule for specific application but it doesn't work. I would like to manipulate this part on each computer via Intune.
A2: Firstly, we need to manually create the rule on one client to see if it works. If yes, then we can deploy it via Intune under device Configuration->endpoint Protection. Here is a link for the reference:
https://learn.microsoft.com/en-us/windows/security/threat-protection/windows-firewall/create-windows-firewall-rules-in-intune
Hope it can help.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.