How to Deploy Network Printer via Intune

Deploying network printers across multiple Windows 10/11 devices can be challenging, especially in modern cloud-managed environments. Microsoft Intune provides a powerful solution for automated printer deployment without requiring traditional Group Policy or print servers. This comprehensive guide walks you through deploying network printers using Intune with PowerShell scripts and Win32 app packaging.

What You'll Learn:

How to package printer drivers for Intune deployment
PowerShell script configuration for printer installation
Creating Win32 app packages with IntuneWinAppUtil
Detection rules and deployment strategies
Troubleshooting common deployment issues

Prerequisites

Before you begin deploying printers via Intune, ensure you have:

Microsoft Intune subscription and admin access
Microsoft Endpoint Manager admin center access
Printer driver files (.inf, .cab, or extracted drivers)
Network printer IP address or hostname
IntuneWinAppUtil.exe tool (download from Microsoft)
PowerShell execution policy configured appropriately

Step 1: Organize Printer Drivers and Scripts

Create a structured folder hierarchy to keep your network printer deployment files organized:

Canon_C355i/
├── Driver/
│   ├── Cnp60MA64.INF
│   ├── [Other driver files]
├── CannonC355i.ps1
└── CannonC355i.cmd

Important: Ensure your driver folder contains the .inf file -- this is essential for driver installation via PowerShell.

Intune Printer

Printer Intune

Step 2: Configure the Batch File

The batch file acts as a wrapper to execute PowerShell with proper execution policies. Create CannonC355i.cmd:

@ECHO OFF
SET ThisScriptsDirectory=%~dp0
SET PowerShellScriptPath=%ThisScriptsDirectory%CannonC355i.ps1
PowerShell -NoProfile -ExecutionPolicy Bypass -Command "& '%PowerShellScriptPath%'"

Key Parameters:

%~dp0 - Gets the directory of the batch file
-ExecutionPolicy Bypass - Allows script execution without policy restrictions
-NoProfile - Speeds up execution by skipping profile loading

Intune Printer Batch file

Step 3: Configure PowerShell Script for Network Printer Installation

Create CannonC355i.ps1 with the following configuration:

$PSScriptRoot = Split-Path -Parent -Path $MyInvocation.MyCommand.Definition
$DriverName = "Canon Generic Plus PCL6"
$DriverPath = "$PSScriptRoot\Driver"
$DriverInf = "$PSScriptRoot\Driver\Cnp60MA64.INF"
$portName = "10.2.x.x"

# Check if printer port exists
$checkPortExists = Get-Printerport -Name $portname -ErrorAction SilentlyContinue

if (-not $checkPortExists) {
    Add-PrinterPort -name $portName -PrinterHostAddress "10.2.x.x"
}

# Install printer driver using VBScript method
cscript "C:\Windows\System32\Printing_Admin_Scripts\en-US\Prndrvr.vbs" -a -m $DriverName -h $DriverPath -i $DriverInf

# Verify driver installation
$printDriverExists = Get-PrinterDriver -name $DriverName -ErrorAction SilentlyContinue

if ($printDriverExists) {
    Add-Printer -Name "Cannon C355i" -PortName $portName -DriverName $DriverName
    Write-Host "Printer installed successfully"
} else {
    Write-Warning "Printer Driver not installed"
    exit 1
}

Critical Variables to Modify

$DriverName - Exact driver name from the .inf file (open .inf and look for driver model name)
$DriverInf - Filename of your .inf file in the Driver folder
$portName - IP address of your network printer (e.g., "10.2.15.20")
Add-Printer -Name - Display name for the printer (appears in Windows Settings)

Pro Tip: To find the correct driver name, open your .inf file and search for [Manufacturer] or [Model] sections.

Step 4: Create Intune Win32 App Package

Use the Microsoft Win32 Content Prep Tool to create an .intunewin package:

cd C:\IntuneAppsWinAppsUtil
.\IntuneWinAppUtil.exe

When prompted, enter:

Source folder: C:\Package\Canon C355i\Final
Setup file: CannonC355i.cmd
Output folder: C:\Package\Canon C355i\Final
Catalog folder: N (not required)

This generates CannonC355i.intunewin in your output folder.

Step 5: Upload to Microsoft Endpoint Manager

1. Navigate to Endpoint Manager

Go to Microsoft Endpoint Manager admin center and select Apps > All apps > Add.

2. Choose App Type

Select app type: Windows app (Win32).

Printer Windows App

3. Upload the Package

Select the App Package file (.intunewin) created in Step 4.

Printer Intune Package

Step 6: Configure App Information

Fill in the app details:

Name: Canon C355i Network Printer
Description: Installs Canon C355i printer with IP 10.2.x.x
Publisher: Your Organization Name
Category: Productivity (optional but recommended for Company Portal)

Intune Network Printer

Step 7: Set Installation and Uninstallation Commands

Install command:

CannonC355i.cmd

Uninstall command:

powershell.exe -executionpolicy bypass -command "Remove-Printer -Name 'Cannon C355i'; Remove-PrinterPort -Name '10.2.x.x'"

Install behavior: System

Intune Printer Script

Step 8: Configure Requirements

Set the minimum requirements for deployment:

Operating system architecture: 32-bit and 64-bit
Minimum operating system: Windows 10 1607 or later

Best Practice: Target Windows 10 1809+ for better printer management APIs.

Intune App Requirement

Step 9: Detection Rules Configuration

This is crucial for Intune to verify successful installation.

Detection method: Manually configure detection rules
Rule type: Registry
Key path:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Printers\Cannon C355i

Detection method: Key exists

Important: The printer name in the registry path MUST match exactly with the printer name in your PowerShell script (Add-Printer -Name parameter).

Intune Printer Detection Rule

Intune Printer deployment

Step 10: Assign to Groups

Click Add group under Required or Available
Select Azure AD groups containing target devices or users
Click Review + save

Assignment Options:

Required: Installs automatically on assigned devices
Available: Users can install from the Company Portal
Uninstall: Removes the printer from assigned devices

Best Practices for Intune Printer Deployment

Test Locally First: Always test PowerShell scripts locally before packaging
Use Standard Drivers: Universal printer drivers reduce package complexity
Group Organization: Create Azure AD groups for printer assignments by location
Version Control: Include version numbers in app names for tracking updates
Documentation: Document printer IP addresses and driver versions
Pilot Deployment: Test on a small group before organization-wide rollout
Company Portal: Make printers available instead of being required for user flexibility

Security Considerations

Execution Policy: Scripts run with bypass policy - validate content thoroughly
Driver Sources: Only use drivers from trusted manufacturer websites
Network Segmentation: Ensure printers are on appropriate VLANs
Audit Logging: Enable logging for compliance tracking
User Permissions: Deploy printers with SYSTEM context to avoid permission issues

Frequently Asked Questions

Can I deploy printers to Azure AD joined devices only?

Yes, this method works perfectly with Azure AD joined devices without requiring on-premises infrastructure. The Win32 app package runs locally on the device using the SYSTEM account.

How do I update printer drivers deployed through Intune?

Create a new version of the app package with updated drivers and upload it as a new version of the existing app in Intune. The detection rules will trigger a reinstallation with the updated drivers.

Can users uninstall Intune-deployed printers?

Yes, unless you configure uninstall protection. Consider making printers "Available" rather than "Required" to give users more flexibility.

Does this work with Universal Print?

This guide is for traditional network printers using IP-based connections. Microsoft Universal Print uses a different cloud-based deployment method through Microsoft 365 and does not require Win32 app packaging.

How many printers can I deploy per package?

One printer per package is recommended for granular control and easier troubleshooting. However, you can include multiple printer installations in a single PowerShell script if needed.

What if my printer requires authentication?

This method supports IP-based printers without authentication. For printers that require user authentication or secure print release, consider Microsoft Universal Print or a traditional print server with Hybrid Cloud Print.

Deploying network printers through Microsoft Intune streamlines printer management in modern cloud-first environments. By following this guide, you can automate printer installation across your organization without relying on traditional infrastructure dependencies, such as Group Policy or print servers.

The Win32 app packaging method provides flexibility for complex scenarios while maintaining centralized control through Intune. Start with a pilot deployment, monitor results, and gradually expand to your entire organization.

Comments (23)

MilMarch 7, 2021 at 07:24 AM

Kudos! Work like charm. I have been looking for such a method to deploy printers for our users in a different site. We recently setup autopilot and are deploying the devices this way. The only thing I was struggling with, was how to deploy the printers and here I found this perfect solution. I was trying other methods like setting this up using the device configuration profile, this works but has some shortfalls. 1. Printer installs with the model name and because we have a certain naming policy for our printers, this was not the ideal solution. 2. This can only be assigned to group of user and devices and thats it. Coudn't be made available through the apps. With this method, i am able to add the printer name and also make this available via the intune company portal . Thx again for this great article..

Christopher Thomas MongelliMarch 9, 2021 at 11:07 PM

Didnt work :(

Tim LeggeMay 6, 2021 at 03:34 AM

If you would like to set the installed printer as the Default Printer. Add the following line to your PS1 script. (New-Object -ComObject WScript.Network).SetDefaultPrinter('Printer Name') I placed this line of code after: Add-Printer -Name "Printer Name" -PortName $portName -DriverName $DriverName So end result would be: { Add-Printer -Name "Printer Name" -PortName $portName -DriverName $DriverName (New-Object -ComObject WScript.Network).SetDefaultPrinter('Printer Name') }

MartinOctober 28, 2022 at 11:08 AM

I tried using your suggestion. However it doesn't work for me. Any ideas why? I also tried it with "" instead '' but no difference. Add-Printer -Name "Printer Name" -PortName $portName -DriverName $DriverName (New-Object -ComObject WScript.Network).SetDefaultPrinter('Printer Name') Set-PrintConfiguration -PrinterName "Printer Name" -PaperSize A4 -duplexingmode TwoSidedLongEdge

MartinNovember 1, 2022 at 03:35 PM

Hi Tim, I have tried adding your line to the below. However it doesn't work for me and I'm not sure why. Any suggestions? I have also tried using "" instead '' but this made no difference. { Add-Printer -Name "Printer Name" -PortName $portName -DriverName $DriverName (New-Object -ComObject WScript.Network).SetDefaultPrinter('Printer Name') Set-PrintConfiguration -PrinterName "Printer Name" -PaperSize A4 -duplexingmode TwoSidedLongEdge } Thanks, Martin

Harrald StrijkerMay 6, 2021 at 03:34 PM

Hello, I can't get it to work. The ps1 file I created works fine, but is does not run automatic. The cmd file seems to be wrong. When I run the cmd lin by line, i get an error. & : The term '%~dp0HPZwolle.ps1' is not recognized as the name of a cmdlet, function, script file, or operable program. Check the spelling of the name, or if a path was included, verify that the path is correct and try again. At line:1 char:3 + & '%~dp0HPZwolle.ps1' + ~~~~~~~~~~~~~~~~~~~ + CategoryInfo : ObjectNotFound: (%~dp0HPZwolle.ps1:String) [], CommandNotFoundException + FullyQualifiedErrorId : CommandNotFoundException

Harrald StrijkerMay 7, 2021 at 11:31 AM

Hello. I have worked with your solution, but I cannot get it to work. For some reason the last line in the cmd file does not work. The error I get is: The term '%~dp0Plotter.ps1' is not recognized as the name of a cmdlet, function, script file, or operable program. When I run the ps1 script seperately, the printer is installed correctly.

UsmanAugust 17, 2021 at 05:39 PM

You may need to run the commands one by one and see what's the output.

AndrewJune 30, 2021 at 11:33 PM

Thank you!! I was struggling with other methods I found to automate local IP printer installs (serverless) with Intune, and your article nailed it. The only thing I had to change was the last line in the .cmd file: PowerShell -NoProfile -ExecutionPolicy Bypass -Command .\CannonC355i.ps1 After that it worked perfectly, and I've started deploying this to my customers.

Arunchandar NDecember 23, 2021 at 05:55 AM

Hi Andrew, I have a small trouble working with this script it worked for few printers and for specific one it fails only from intune. Manually running it works like a charm. I am getting 0x80070001 error code, I am not sure if i am leaving anything missing.

Paul SiwekJuly 14, 2021 at 11:22 AM

I've tried this and deployed to some Intune devices, however it's failing and showing as 0x87D1041C i think meaning it couldn't detect if it was installed. however the printer is not showing, but when running manually on a domain joined device, the script works perfectly. Our Intune devices are on the same IP range as our wired Desktops. We use a Hybrid network so Local AD Synced with AAD, we also use Uniflow as our print management solution. If i Run the script as myself, presumably i have higher permission that most users, the script runs and the printer is added, and i can print (even using secure print"

Trev FarquharsonJuly 26, 2021 at 10:28 PM

We have printers on remote sites that are not connected to our network, so the printer port is not detectable when deploying/setting up the laptop. How do we make the script work for this situation?

Aaron OveringtonNovember 1, 2021 at 01:40 AM

You will need to use lpr printing; set up the LPD print service on your print server, then you can use the Add-Printer command with -LprHostAddress and -LprQueueName to install the printer without needing to access it

Jeroen HuylebroeckAugust 19, 2021 at 08:19 PM

I'd like to give a small remark: when copying the code there's a mistake, it delivers smart quotes instead of straight quotes, which results in errors.

MarkAugust 20, 2021 at 04:25 PM

Hi thanks for these instructions - the first time I tried to work them through it failed. However, on my second attempt a month later, I made two changes that I know of which seemed to do the trick. 1. I changed all the smart quotes to straight quotes - that one has caught me out programming HTML before now so I should have spotted it. 2. The final change in the .ps1 document (Add-Printer -Name) should be exactly the same as the end of the Registry Key Path used in step 12 (including any spaces). Hope that helps anyone else who's working through these steps.

BobAugust 26, 2021 at 11:19 AM

Removing the printer with the same CMD doesnt seem to work. Is it possible to implement 2 powershell scripts into 1 .intunwin file or how should this work?

DanilNovember 11, 2021 at 02:54 PM

I need to set up the printer this way, but add a secure print setting. tell me how to do it please

Craig DuffJanuary 13, 2022 at 01:00 PM

How can you now add network printers? What do you need to change within the script?

GiulianoJune 30, 2022 at 09:56 PM

Hi, Thanks for this, it works perfectly :-) Do you know the settings/scripts to uninstall it from Intune? Thanks

Norm VandersNovember 3, 2022 at 01:59 AM

How can I use the script to only install device drivers (ie: HP Universal Printer Drivers) without prompting for any other ports, ip, etc for specific printers. I'd also like to add a line for logging into a txt file. Any advice would be appreicated.

Jeff RNovember 23, 2022 at 12:27 AM

The script works great when I run it manually but fails in Intune with "The application was not detected after installation completed successfully (0x87D1041C)". Any suggestions on how to troubleshoot?

AustinDecember 5, 2022 at 08:26 PM

Also had this happen to me. In my case, at first I didn't use the .bat script to call the powershell script, rather just win32 wrapped the driver and powershell script. The issue ended up being Intune couldn't detect the printer because the actual adding of the printer happened after the powershell script ran. Intune detection just missed it. If you follow this article exactly and use the .bat script to call the powershell script, the powerhshell completes and then the .bat completes which is enough time for the printer to show up and Intune to detect it.

SvetApril 24, 2023 at 03:49 PM

Hi, you mention "If you have a printer server installed with a DNS name then we can use a device configuration profile to install the printer which is quite simple". I am not really sure how simple is this, I cannot find any information how to do this with configuration profile. I will be glad if you have the guide somewhere. Thank you.