To discover Intune vScope needs read access to Azure. This is done by creating an application that is given read permissions to the different resources in Azure.
Here is how you set up the standard connection between vScope and Azure: Setting up Discovery of Azure.
API permissions for Intune
To discover Intune vScope needs the following API permissions of the Microsoft Graph API:
Step 1 – Log into https://portal.azure.com/
Step 2 – Go to the service “App registrations”. You can search for the service in the search bar.
Step 3 – Open the vScope application if you already have one, otherwise follow steps (1) and (2) in this guide to create one. Make sure to do the last section “Create the Azure credential in vScope” in the article if you just created the application in Azure.
Step 4 – Click on “API permissions” -> “+ Add a permission” -> Microsoft Graph -> Application Permissions and select the above mentioned API permissions for Intune.
Step 5 – Grant permissions.
Step 6 – Open the Azure RM credential in the Discovery Manager -> Open the advanced settings as pictured below-> Enable “Inventory Intune”.
The next time vScope discovers your AzureRM credential it will inventory the clients in Intune aswell.
Tip! You can start a quick discovery of Azure RM by marking it in Discovery Manager and clicking “Rediscover”.
Our support team is always happy to assist! Just send them an email at email@example.com.