Before discovering Intune, make sure vScope has read access to Azure. This is done by creating an application that is given read permissions to the different resources in Azure.

Here is how you set up the standard connection between vScope and Azure: Setting up Discovery of Azure.

API permissions for Intune

To discover Intune, vScope needs the following API permissions of the Microsoft Graph API:

• DeviceManagementConfiguration.Read.All
• DeviceManagementManagedDevices.Read.All

Instructions

Step 1 – Log into https://portal.azure.com/

Step 2 – Go to the service “App registrations”. You can search for the service in the search bar.

Step 3 – Open the vScope application if you already have one, otherwise follow step (1) and (2) in this guide to create one. Make sure to do the last section “Create the Azure credential in vScope” in the article if you just created the application in Azure.

Step 4 – Click on “API permissions” -> “+ Add a permission” -> Microsoft Graph -> Application Permissions and select the above mentioned API permissions for Intune.

Step 5 – Grant permissions.

Step 6 – Open the Azure RM credential in the Discovery Manager -> Toggle on Intune and press “Update”.

Done!

The next time vScope discovers your AzureRM credential it will inventory the clients in Intune aswell.

Tip! You can start a quick discovery of Azure RM by marking it in Discovery Manager and clicking “Rediscover”.

Need help?

Our support team is always happy to assist! Just send them an email at support@infrasightlabs.com.