Integrating Intune with Azure Active Directory (AAD) for advanced device management capabilities

Continue Reading

Step 1: Connect to Your Microsoft Azure Account

To begin the integration process, you must log in to your Microsoft Azure account. Ensure you have administrator privileges, as this is necessary to authorize Hector as an application within your Azure environment.

Step 2: Obtain Your Primary Domain

After connecting to your Azure account, navigate to the Azure Active Directory section. Here, you will find your Azure Primary Domain listed. Copy this domain, as you will need it for later steps in the integration process.

Step 3: Find Your Client ID

Next, head to your registered applications within Azure. Locate the application you will be using for this integration, and copy the Application (client) ID found in the overview section. Keep this ID handy for subsequent steps.

Step 4: Set Up Permissions

Now, you need to configure the necessary permissions for your application:

• Click on the Add a permission button.
• Select Microsoft Graph.
• Choose the Application permissions option.
• Scroll through the options until you find the Device, DeviceManagementConfiguration, and DeviceManagementManagedDevices sections. Expand each section to view available permissions.
• Select the Read.All permission from these sections and then click on the Add permissions button.

After adding the permission, you must grant admin consent for these changes to take effect. Validate that the permission has been successfully added by checking your permission list, then click on Grant admin consent for ….

Step 5: Make the Application Public

To ensure that Hector can connect to your application, you need to set it as a public client:

• Go to the Authentication section.
• Scroll down to the Advanced Settings and set the option to “Yes” for making the application a public client.
• Don’t forget to click the Save button to apply these changes.

Step 6: Create a Secret Key

Next, navigate to the Certificates & secrets section to create a new secret key:

• Click on + New client secret.
• Enter a description, such as HectorApp.
• Choose an expiration duration (you can select “Never” or set a specific time).
• After adding the secret, copy the value and store it securely for future use.

Step 7: Set Up Hector

Now that you’ve completed the Azure setup, log in to your Hector instance as an administrator. Go to the Settings menu and click on Integrations. Select Integration Azure Directory / Intune within the Inventory tab and press Add.

You will need to enter the previously obtained primary domain, client ID, and secret key. Additionally, choose a default category and initial destination for the integration.

Step 8: Configure Hector Options

Hector offers various configuration options to tailor the integration to your organization’s needs:

• Tenant: Specify your Azure tenant.
• Client ID and Secret: Use the details from your Azure setup.
• Category: Define the category for device creation.
• Initial Destination: Indicate where devices will be created if synchronization is not activated.
• Import Options: Select various import options based on your requirements, such as importing Azure devices not in Intune, synchronizing destination emails, and controlling which devices to import based on ownership or join type.

Make sure to save all changes after configuring the options.

Conclusion

Your Intune integration with Azure Active Directory is now set up and active! With automatic synchronization scheduled daily, your organization will benefit from streamlined device management and enhanced security. As a Microsoft Technology Partner, AVASOFT is dedicated to helping organizations like yours leverage innovative solutions to optimize their IT environments.

Connect with us to embrace the power of integrated management with Intune and Azure AD today.