Guest Christiaan_Brinkhoff Posted August 11, 2021 Posted August 11, 2021 Universal Print eliminates the need for on-premises print servers and let you easily manage and deploy printers directly to Cloud PCs with Microsoft Endpoint Manager. As businesses are shifting more and more to digital and away from paper, you could ask yourself, do we still have to print? In many cases, the answer is still "yes" and that's why it is important to simplify legacy print environments in the most efficient way possible. This is where the new Microsoft 365 service Universal Print comes into play! What is Universal Print? Universal Print is a cloud-based print solution to allow IT admins to share and manage printers through the cloud. You might remember how to set up a print environment– or still do it today. Spin up a Windows Server environment, add the print server role, and start adding printers and designated drivers to the server. Not very modern. Universal Print offers the same, and more, features while also eliminating the need for on-premises infrastructure. It enables you to manage printers directly through a centralized portal in Microsoft Azure. Say goodbye to installing (and maintaining) printer drivers on devices and/or golden images. Also, everything works with Azure AD. This means that users can use the same set of credentials they use for other Microsoft services, whether they logon to a physical or virtual desktop running in the Cloud. To learn more, see Supported print options – Universal Print. With Universal Print, you can: Move to a print setup that’s scalable and easy to configure. Eliminate the need to manage print servers. Enjoy robust management capabilities through the centralized Azure portal. Control print environment and reporting. Gain visibility and insights into your print environment. What is Windows 365? Users want technology that is familiar, easy to use and always available so they can work and create fluidly across devices. Cloud PC makes this possible by combining the power and security of the cloud with the familiarity of the PC. Only Microsoft can bring together the PC and the cloud with a consistent and integrated Windows experience. Introducing Windows 365. Windows 365 is the world’s first Cloud PC. With a Cloud PC, Windows evolves from a device-based OS to hybrid personalized computing. A Cloud PC is your personalized desktop, apps, settings, and content streamed securely from the cloud to your devices. It enables you to decrease costs while lowering the complexity of your environment as you deploy and manage virtual endpoints in Microsoft Endpoint Manager. No additional virtual desktop infrastructure (VDI) expertise or resources are needed. Universal Print and Windows 365 architecture As most of my followers know, I’m an engineer that likes to explain new technology in depth. The architectural concept around Universal Print is as is show in the illustration below. The core print services are running in the Cloud as Platform service running on Azure, while the Universal Print connector(s) have to be installed on device running a Windows Server or Windows client OS. The connector device may be a physical device, virtualized on-premises, or hosted in Azure. You may choose to install connector on an existing print server to quickly add all the printers on that device to Universal Print. Note: There is no need for a connector if you already have a Universal Print ready printer. There may also be firmware updates for printers that don’t currently support Universal Print with their older firmware version. Where does my printed data go? Universal Print stores all print queues in Office data storage. This is the same storage that stores customer’s Office 365 mailboxes and OneDrive files. A job stays in the print queue for a few days. If the job is not claimed at the printer within three days, it gets marked as aborted. Even after printing, a job may stay in Universal Print for a few more days (up to a total of 10 days). Built-in location detection: your printers follow you based on your location Working remote and from home are popular today. When you do return to the office; however, Universal Print offers the option to search for printers based on location and, when you return home, your home printer is auto-assigned. How does that work? You can use filters based on country, city, building, floor, and other criteria. Alternatively, there’s the option to use GPS based location-allocation. The Printer Administrator can configure the latitude and longitude of their printers in the Universal Print Admin portal. In order to track the location of the user, location sharing should be turned on the user’s Windows physical endpoint device Universal Print is most likely already part of your existing Microsoft 365 license Universal Print is – next to other Microsoft 365 services, like Azure Virtual Desktop – part of almost all the common Microsoft 365 licenses. So there a likely chance that you are eligible for using Universal Print today if you have one of the following subscriptions: Microsoft 365 Enterprise F3, E3, or E5 Windows 10 Enterprise E3 or E5 Microsoft 365 Education A3 or A5 Windows 10 Education A3 or A5 Microsoft 365 Business Premium If your organization does not have one of these, Universal Print can be licensed standalone. (The standalone subscription does not come with, but requires, Azure Active Directory.) Requirements for Universal Print Your desktops should be joined to Azure Active Directory. Hybrid Azure AD joined devices/virtual desktops are also supported. Eligible Microsoft 365 or Windows SKUs license as listed above. Universal Print licenses assigned to the Azure AD tenant by the User Administrator or Global Administrator to users. A Universal Print supported printer that can connect directly to the Cloud – without connector A normal USB or network printer (via Universal Print connector) To configure Universal Print, the administrator doing the work should have either the Printer Administrator – Azure AD role, or should just be the Global Administrator. Windows 10 physical and virtual desktops must be enrolled with Microsoft Endpoint Manager [*]Window 10 client device – on version 1903 or later Windows 10 devices need to have the latest Windows Update installed: Windows 10, version 2004: KB4571744 For Windows 10, versions 1903 and 1909: KB4566116 Windows 10, version 2004: KB4571744 For Windows 10, versions 1903 and 1909: KB4566116 [*]Universal Print connector host or Universal Print ready printer [*]Network requirements – The connectors and your Desktops should be able to connect the Universal Print – service URLs below. https://login.microsoftonline.com https://aadcdn.msftauth.net *.print.microsoft.com Deploying Universal Print Before we start, make sure – that just like Windows 365 - that your environment is Hybrid Azure Active Directory enabled – or Azure AD only. Make sure the “Windows 10 or later domain-joined devices” box has been ticked. For more details, see Configure hybrid Azure Active Directory join for managed domains. Configure Universal Print licensing If you have an eligible Microsoft 365 or Windows subscription, here are the steps. Go to the Microsoft 365 admin portal. Select Purchase services . Scroll to the bottom of the page and select Add-ons . Under Universal Print , select Details . Select Buy to complete the process. Important: You will not have to pay for the license if you have one of the licensing subscriptions listed in the Requirements section above. Assign the licenses to your users via the Users menu in the admin portal. If you want to delegate access, or configure the Universal Print service with an account other than the Global Administrator, assign Printer Administrator rights to a user account by selecting Printer admin and Printer tech . Start the Universal Print configuration in the Azure Portal Go to the Microsoft Azure Portal and log on as either the Global Administrator or the account with the Printer admin/tech roles assigned. Search for Universal Print. Note: Getting this error? Make sure you have a Universal Print license assigned. Set up Universal Print on a Universal Print ready printer You can perform the following steps if your printer is Universal Print ready. In this example, we'll use Lexmark, but Canon, Brother, Konica Minolta, and other printers are supported too. See Partner Integrations – Universal Print for the full list. Note: If you are registering a specific vendor’s Universal Print ready printer for the first time, the Azure AD account needs to be a Global Administrator. Open the web management console of your Lexmark printer. Navigate to the Network/Ports menu under Settings. Scroll down to the Universal Print section, Select Register. Log on with your Printer Operator or Global Administrator Azure AD account credentials. You Printer has been successfully registered to Universal Print. Set up the Universal Print connector to connect to on-premises locations and printers Please perform the following steps if your printers are not able to connect with Universal Print directly and require a bridge/proxy which has to be done with the Universal Print connector. Note: You can also install the software on one of your legacy print servers to connect them to the Universal Print service. The Print Connector must run in order to connect to the printer, it’s possible to let other users print via a printer that is connected via a print connector on someone else’s desktop. Install the Universal Print Connector on a local physical desktop that is in the same network as your printers. Download the latest Print Connector. Install the Print Connector. Select Install. Once installation is complete, select Launch. Select OK to confirm the diagnostic data prompt. Select Login. Log on with your Azure AD credentials. Note: Not needed to use the Print Administrator / Global Administrator account. Enter a name for the Connector. The connector will show up later in the Universal Print – admin portal as proxy for that designated printer(s). The Connector will now be registered to the Universal Print Service! To verify, in the Connectors menu in the Azure Portal, you should see the Connector name listed. You can select the connector name to see some of the details of that specific machine and its status. Enable hybrid AD configuration via the Universal Print Connector If you are utilizing Azure Virtual Desktop or any other hybrid Azure AD physical endpoint scenario, you will need to open the Universal Print connector settings, navigate to Enable hybrid AD configuration, and select On. Register your own custom Printers to Universal Print The connection is complete. We now need to make the printers available in the cloud as part of the Universal print service. Open the Universal Print connector settings. (The list of available printers is detected from the printers attached to the desktop/server on which you installed the Printer Connector.) Select the printers you'd like to add from the Available Printers list then select Register. The printers are being added to the Cloud. The status is in progress. This takes a minute or so. Share printers with users While printers are now visible in the Printers list, they aren’t yet shared. To share the printers with your end users, Navigate to the Universal Print portal and select Printers. Printers not yet shared will have a status of “Not shared”. Select the printer(s) you want to share and select Share.|| Assign permissions to use printer(s) Now the printers have been connected and shared, but users are still not allowed to see and use the printers. You now need to add and configure an Azure AD group or add the users directly to the list of members for each printer. You can also select the “Allow access to everyone in my organization” option to allow all users to print. Select your Azure AD users or groups. Once ready, select Share Printer The printer is being shared… The printer is now ready to test within your desktop – as the status is "Printer Shared." Test your printer assignment To test that printers have been assigned correctly, log on to your virtual or physical desktop Logon as an Azure AD user that is assigned to one of the printers that is shared within Universal Print. In Windows, navigate to the settings for Printers & scanners. Select Add a printer or scanner. Select Search Universal Print for printers. Your assigned cloud printers should show up automatically. Select Add device to add the cloud-based printer to your virtual or physical desktop. The printer has now been added and is ready to test. Open the cloud-based printer and select Manage. Select Print a test page. The test page has been sent to the printer. You can open the print queue to see if something happens. The test print job has been sent to the printer. If everything goes fine, the print job should be available and listed in the Universal Print admin portal too. You can find the jobs in the Universal Print portal by selecting the printer and then selecting Jobs. You should also see the job status as Completed. Great job! Assign and deploy cloud printers with Microsoft Endpoint Manager In the previous section, you’ve learned about all the basics as well as the manual process of assigning printers. For enterprises seeking to assign numerous printers to various users across multiple geographic locations, this process can be conducted—and simplified—with Microsoft Endpoint Manager. Note: To add virtual desktops to Microsoft Endpoint Manager, see Preparing to Manage Windows Virtual Desktops. First, download the Universal Print provisioning tool. Make the CSV list ready for deployment as the Microsoft Endpoint Manager enrollment will be using the CSV as its source. You can find the printers.CSV file in the tool as part of SamplePolicy.zip. Add each Universal Print Printer Share Name and Share ID—noting for each if it should be the default printer—into the CSV file in the following order: SharedId,SharedName,IsDefault Look up the Printer Share Name and Share ID that you want to add via Microsoft Endpoint Manager. Generate the custom Win32 application package that includes the new .CSV file with the correct printer share names and IDs. Download the Microsoft Win32 Content Prep Tool. Unzip the tool e.g. on the C:\ drive or whatever folder location you like. Launch PowerShell and change the directory to the Intune Prep tool location (e.g. C:\Microsoft-Win32-Content-Prep-Tool-master). In this case: cd “C:\Microsoft-Win32-Content-Prep-Tool-master” Run .\IntuneWinAppUtil.exe and fill in the following requirements: Source folder: The folder where list of printers (printers.csv) and InstallPolicy.cmd files are present. Setup file: Path of the InstallPolicy.cmd file (or any other script that will be used to copy the printers.csv file on users’ devices) Output Folder: Folder where you will like the generated intunewin package file to be stored. Do you want to specify catalog folder (Y/N): Enter N. The .intunewin package is now ready to use within Microsoft Endpoint Manager! Now we move to the Microsoft Endpoint Manager admin center. Navigate to the Apps menu. Select Add. Choose Windows app (Win32) as the App type and select Select. Select Select app package file and browse to the .intunewim file output – e.g InstallPolicy.intunewin in folder C:\Microsoft-Win32-Content-Prep-Tool-master Select OK. Give the app a custom name such as the Install HP Printers example below. Select Next. In the Program tab, in the Install command field, enter "InstallPolicy.cmd user install". In the Uninstall command field, enter " InstallPolicy.cmd user uninstall". Make sure the Install behavior is set to User and select Next. In the Requirements tab, select the appropriate options and select Next. Select File as the Rule type based on the CSV file that included your printers to be added. Enter the following location in the Path field: %AppData%\UniversalPrintPrinterProvisioning\Configuration. Add printers.csv in the File or folder field. Make sure Detection method is set to File or folder exists, then select OK. Select Next. Filter the list of printers in the assignment’s menu to, for example, AD groups per department. Select Next. Confirm the settings, then select Create. Your printers are now available to your users and virtual desktops! Need help? Visit the Windows 365 Tech Community! Visit the new Windows 365 Tech Community to gather with other people that are seeking to learn and help each other while adopting Windows 365 and Cloud PC. Have ideas on what features you'd like to see in this service? Submit them through the Windows 365 feature requests board! Continue reading... Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.