Microsoft Edge Deployment Guide Plan Before Your First Broad Deployment of Microsoft Edge, Consider These Key Steps

Home , Microsoft Edge, Trident (software)

Microsoft Edge Deployment Guide Plan Before your first broad deployment of Microsoft Edge, consider these key steps:

Step 1 Evaluate your existing browser environment and Step 6 Run app compatibility testing browser need Many organizations must run app compatibility testing to validate Take time to understand your current browser state and any applications for compliance or risk management reasons. necessary prerequisites. Set goals to ensure all project stakeholders Lab testing. Applications are validated in a tightly controlled are aligned and working toward the same deployment result. environment with specific configurations.

Pilot testing. Applications are validated by a limited number of Step 2 Determine your deployment methodology users in their daily work environment using their own devices. After you know your desired end state, you’re ready to choose how to deploy Microsoft Edge to end users: by role or by site. Step 7 Deploy Microsoft Edge to a pilot group With your policies defined and your initial app compatibility Step 3 Perform site discovery for Enterprise Site List tested, you’re now ready to deploy to your pilot group. Additional site discovery is needed if you depend on legacy web applications and plan to use Internet Explorer mode (which most customers do). To learn more, see page 6. Step 8 Validate your deployment After your pilot is deployed, you will want to capture all the feedback on compatibility, policy configuration, ease of use, and new features. Step 4 Select your channel strategy Consider a deployment strategy that includes multiple devices and channels; this gives your business broad, stable functionality Step 9 Develop a change management plan and broadly while preserving the ability to test new features in preview builds. deploy Microsoft Edge

Once your deployment plan is updated with lessons learned from the pilot, you’re ready to do a full deployment of Microsoft Edge to Define and configure policies Step 5 all your users. Consider a change management plan for your users to After you’ve created your Enterprise Site List for legacy web apps, get the most out of Microsoft Edge. start identifying and configuring the policies you intend to deploy. This ensures that these policies are applied when testing begins. Step 10 Ongoing management Because Microsoft Edge experiences regular updates over time, you will want to evaluate these steps periodically to account for any changes to your environment. To help with this, we recommend running the Microsoft Edge Beta with a representative subset of users to test-build prior to broad deployment.

For more detailed information, visit here. 2 Channels overview Microsoft Edge channels are available on all supported versions of Windows, Windows Server, and macOS. The mobile version is available on iOS and Android devices.

Stable Preview Channels

Have the opportunity to test new builds and features, and provide feedback directly to Microsoft.

BETA DEV

A production-ready release, ideal for broad deployment The most stable preview experience and offers full The Dev builds are the best representation of weekly to most devices with full enterprise support. enterprise support. improvements, while allowing for early evaluations of new features. This is the most stable version of the browser, with general Each release incorporates learnings and improvements availability for broad deployment enterprise-wide. Major updates from the Dev (weekly) and Canary (daily) builds, with major We recommend using the Dev channel for learning and/or are released every six weeks and include all learnings from the updates every six weeks. We recommend running this channel planning. These builds are tested by the Microsoft Edge team, and preview builds. with a representative subset of users to test builds within are generally more stable than those from Canary. your environment before they move to our production-ready Stable channel.

Download your preferred channel here.

3 Microsoft Mechanics video series Learn how to deploy Microsoft Edge, set up Internet Explorer mode and configure with policies, and how to set up Microsoft Search with the Microsoft Edge playlist.

Deploy Security & Compatibility Microsoft Search

Get a hands-on tour of how to deploy Microsoft Edge to Take a hands-on tour to experience the security, Get a hands-on tour of Microsoft Search, tailored your devices. compatibility, and manageability of the new experience to search for information in your Microsoft Edge. organization. Learn about Edge package options for automated installation, how to deploy Edge to Windows PCs using MECM (Microsoft Endpoint Edge is based on Chromium and designed to be the best You can easily find people, files, org charts, sites, and answers to Configuration Manager), and steps to ensure all managed devices, browser for business. Our host, Jeremy Chapman, shows you common questions. See how it works, how to set it up quickly, and including your phones and Macs, are provisioned with Edge. what sets it apart from other browsers. the advanced capabilities to help your users find the information they need to get work done.

Check out the playlist at https://aka.ms/EdgeforIT.

4 Deploy and update After completing the steps for your deployment plan, there are multiple options for deploying and updating Microsoft Edge on both Windows and macOS.

Windows macOS

Deploying via Configuration Manager Deploying via Microsoft Intune Deploying via Jamf Deploying via Microsoft Intune

Step 1 Step 1 Step 1 Step 1 Create a deployment in the console with a Ensure you have Windows 10 RS2 Create a new package in Jamf and assign Add and configure app information new node called Microsoft Edge Management. or above installed. details, configure policies, select distribution and app settings, and select scope tags Here you can create a new application; specify points and actions to take for each policy, (optional) in Microsoft Intune. a name, description, and location for the and review and complete the deployment. content of the app; select a channel and a version to deploy; and complete and test the Step 2 success of the deployment. Configure the app in Microsoft Intune. Step 2 Step 2 Find detailed steps for deployment here. Find detailed steps for deployment here. Step 2 Step 3 Once deployed, updates to the browser will Configure app information and app settings, show up in Configuration Manager as they and select scope tags (optional). become available.

Step 4 Step 3 Add the app and conduct troubleshooting. Find detailed steps for deployment here.

Step 5 Find detailed steps for deployment here.

5 If unable to access hyperlinks, please visit https://docs.microsoft.com/deployedge for more information. Internet Explorer mode Learn how to set up Internet Explorer (IE) mode for your organization by adding sites to the Enterprise Mode Site List.

What is IE mode? Supported functionality Deploy

IE mode on Microsoft Edge makes it easy to use all of the IE mode supports the following Internet Explorer Only those sites that you specifically configure (via sites your organization needs in a single browser functionality: policy) will use IE mode; all others will be rendered as modern web sites. To have sites open in IE mode, see All document modes and enterprise modes, ActiveX controls the below options: IE mode uses the integrated Chromium engine for modern sites, (such as Java or Silverlight), Browser Helper Objects, Internet and it uses the Trident MSHTML engine from Internet Explorer 11 Explorer settings and Group Policies that affect the security (IE11) for legacy sites. zone settings and Protected Mode, the F12 developer tools for Option 1 (Preferred) IE (when launch with IEChooser), and Microsoft Edge extensions When a site loads in IE mode, the IE logo indicator displays on (extensions that interact with IE page content directly are not List the site in the Enterprise Mode Site List XML defined in one fo the left side of navigation bar. You can click the IE logo to display supported). these policies: additional information. • Microsoft Edge 78 or later, “Configure the Enterprise Mode Site List” IE mode doesn’t support the following Internet • Internet Explorer, “Use the Enterprise Mode IE website list” Explorer functionality: Internet Explorer toolbars, Internet Explorer settings and Group Policies that affect the navigation menu (for example - search Option 2 engines, and home pages), and IE11 or Microsoft Edge F12 If you’re already using the “Send all intranet sites to Internet developer tools. Explorer” group policy, those sites will open in IE mode. • Microsoft Edge 77 or later

IE mode not supported on macOS For a demonstration on how to configure IE mode, see the Microsoft Mechanics ‘Configure’ video on page 4.

View IE mode OS/version prerequisites and learn more about IE mode here.

6 Configure Microsoft Edge can be configured on both Windows and macOS.

Windows macOS

Default Configuration Configure with Microsoft Intune Configure with Mobile Device Default Configuration Management You can configure Microsoft Edge on Windows 10 using MDM with your preferred Enterprise Mobility Step 1 Step 1 Management (EMM) or MDM provider that supports ADMX Ingestion. Step 1 Download and install the Microsoft Edge Create a profile to manage settings using Create a property list (.plist). administrative template. Administrative Templates. Step 1 Step 2 Step 2 Step 2 Ingest the Microsoft Edge ADMX file into Find detailed steps for configuration here. Create a configuration file. Add the template to Azure Active Directory your EMM or MDM provider. See your and to individual computers. provider for instructions on how to ingest an ADMX file. Step 3 Step 3 Deploy your .plist using your preferred Step 2 MDM provider. Set mandatory and recommended policies with the Group Policy Editor for both Active Create an OMA-URI for Microsoft Edge Directory and individual computers. policies. Step 4 Find detailed steps for configuration here. Step 4 Step 3 Find detailed steps for configuration here. Find detailed steps for configuration here.

You can also set Microsoft Edge as the default browser on Windows Search for work results like files, sites, and people right from (on domain-joined devices or Azure Active Directory-joined devices) Microsoft Edge with Microsoft Search in Bing and on macOS. Learn how to set up Microsoft Search for your organization here. Or Find detailed steps for configuration here. watch the Microsoft Mechanics video.

7 If unable to access hyperlinks, please visit https://docs.microsoft.com/deployedge for more information. Resources

Policy reference Need more help?

Microsoft Edge comes with a library of 200+ policies you can use to tailor how your Stable channels organization runs Microsoft Edge. Get deployment help with FastTrack These cover a broad spectrum of functionality, including content settings, extensions, HTTP (eligible subscriptions only). authentication, password management/protection, browser updates, native messaging, and more. If your site works in Internet Explorer 11, Chrome, • Explore available browser policies here. or Microsoft Edge Legacy, it should work in the new Microsoft Edge. If not, we’ll help you fix it • Explore available update policies here. with App Assure.

If your organization has a Microsoft support plan, create a support request on this page.

Microsoft security Visit our Troubleshooting page.

Microsoft Edge provides a comprehensive approach to security to help protect an organization’s users and data whether in the office or working remotely. See below for Preview channels more in-depth information on Microsoft Edge security features. Get help with preview channels from the • Learn more about Windows Information Protection (Windows 10) Microsoft Edge Insider tech community forum.

• Learn more about Microsoft Defender Application Guard (Windows 10) Submit a ticket with Microsoft Edge Insider Support • Learn more about Microsoft Defender SmartScreen (preview channels only).

• Learn more about Security Baselines (Windows 10 and Windows server only)