How to integrate vScope with Microsoft Intune

Last updated on: March 8th, 2021

To discover Intune vScope needs read access to Azure. This is done by creating an application that is given read permissions to the different resources in Azure.

Here is how you set up the standard connection between vScope and Azure: Setting up Discovery of Azure.

API permissions for Intune

To discover Intune vScope needs the following API permissions of the Microsoft Graph API:

  • DeviceManagementConfiguration.Read.All
  • DeviceManagementManagedDevices.Read.All


Step 1 – Log into

Step 2 – Go to the service “App registrations”. You can search for the service in the search bar.

Step 3 – Open the vScope application if you already have one, otherwise follow steps (1) and (2) in this guide to create one. Make sure to do the last section “Create the Azure credential in vScope” in the article if you just created the application in Azure.

Step 4 – Click on “API permissions” -> “+ Add a permission” -> Microsoft Graph -> Application Permissions and select the above mentioned API permissions for Intune.

Step 5 – Grant permissions.

Step 6 – Open the Azure RM credential in the Discovery Manager -> Open the advanced settings as pictured below-> Enable “Inventory Intune”.


The next time vScope discovers your AzureRM credential it will inventory the clients in Intune aswell.

Tip! You can start a quick discovery of Azure RM by marking it in Discovery Manager and clicking “Rediscover”.

Need help?

Our support team is always happy to assist! Just send them an email at

Leave a Reply