We've setup Intune with NDES and an on-prem PKI to issue User Certificates to Intune enrolled devices.
This is working great for Windows10 devices, and we are using the Intune extension to check that a device is Managed, Corporate owned and compliant.
We are having an issue with Android devices registered in Intune - they are visible in Intune, and are showing as compliant etc, but for some reason the extension isn't able to find them.
The only difference between the devices in Intune that I can see is that the MAC address for Android devices is in the format AA:BB:CC:DD:EE:FF, whereas Windows devices are AABBCCDDEEFF.
The Filter query in the Intune HTTP auth source is as follows, but there is no 'Upper Case with Colon Delimiter' option we can use.
?macAddress=%{Connection:Client-Mac-Address-NoDelim}
Unfortunately the DEBUG logs from the extension don't shed much light ont this.
Has anyone been able to use the extension for Android devices successfully before?