Microsoft Intune Integration
Microsoft Intune is an endpoint management solution that helps organizations manage user access and secure devices used to access corporate resources. When integrated with ServiceDesk Plus MSP Cloud, you can import asset information from Microsoft Intune into ServiceDesk Plus MSP Cloud.
Microsoft Intune Integration is available only in the Enterprise edition.
Imported assets are referred to as devices in Microsoft Intune and as assets in ServiceDesk Plus MSP Cloud.
Supported Assets: Mobile Devices and Workstations
Supported OS: Windows, Mac OS, Android, and iOS.
Benefits of Integrating ServiceDesk Plus MSP Cloud with Microsoft Intune
- Periodically sync device information between Microsoft Intune and ServiceDesk Plus MSP Cloud.
- View and manage assets from a single location.
- Perform several Intune actions such as restart, sync, wipe, retire, send notifications, and delete imported assets.
- Associate requests and contracts with imported devices.
Enable Microsoft Intune Integration
Role Required: SDAdmin users with global administrator, Intune administrator, or a similar role in Mircrosoft Intune that provides access to all managed devices.
To enable Microsoft Intune integration,
- Go to Setup > Apps & Add-ons > Integrations > Third Party Integrations.
- On the Microsoft Intune card, click the toggle button to enable integration.
Configure Intune Actions
When enabling Microsoft Intune integration, select asset actions that can be performed within ServiceDesk Plus MSP Cloud.
The available actions are as follows:
Intune Actions | Explanation |
Sync | Forces devices to sync with Microsoft Intune and imports any pending actions or policies assigned to the devices. |
Wipe | Restores devices to factory settings. This removes both organizational and personal data. This action is not supported for macOS and iOS devices. |
Restart | Restarts the device without notifying the device owner. |
Retire | Removes selected devices from Microsoft Intune and deletes managed app data, settings, and assigned email profiles. Retired devices will no longer have access to the organization's resources. |
Delete | Removes selected devices from Microsoft Intune. Deleted devices will no longer have access to the organization's resources. |
Send Notification | Sends custom messages to devices. The notifications appear on the device lock screen. Intune custom notifications are not supported on macOS and Windows devices. |
Configure Sync Details
- To configure sync actions, click Configure on the Microsoft Intune card in the integration page.
- Under Sync Settings, configure actions to be performed when an asset is removed from MS Intune:
- Do nothing: Asset data in ServiceDesk Plus MSP Cloud will remain unchanged.
- Modify asset state to: Asset state in ServiceDesk Plus Cloud will be updated as configured here.
- Delete asset: The Asset data will be removed from ServiceDesk Plus MSP Cloud.
- Sync user information from Intune: Enable this option to add the primary user of the device in Microsoft Intune as the resource owner in ServiceDesk Plus MSP Cloud.
If the user is in Microsoft Intune but not in ServiceDesk Plus MSP Cloud, a new user will be created in ServiceDesk Plus MSP Cloud and will be assigned to the asset.
- Append Asset ID to mobile device names: Choose to append asset ID to device names.
- Under Conditions, configure actions to import devices from Microsoft Intune into ServiceDesk Plus MSP Cloud.
- Without criteria: All assets from MS Intune will be imported.
- Based on criteria: Set specific conditions to import assets.
Preview Matching Assets (JSON): Preview the list of devices that will be synced into ServiceDesk Plus MSP Cloud based on the specified criteria.
- Click Save to save the configurations, or Save and Sync to save the configurations and import assets from Microsoft Intune instantly.
The imported devices are stored under Assets > IT and classified as smartphones, tablets, or workstations.
The following information will be synced during the import
- Product name and model
- Device details like IMEI, serial number, network information, and operating system
Asset names in ServiceDesk Plus MSP Cloud will be based on device names configured in Microsoft Intune. The Device ID will not be synced.
Please maintain unique names for your devices in Intune.
The imported devices contain the Microsoft Intune logo beside their name in assets list view and on their details page. You can perform several Intune actions such as restart, sync, wipe, retire, send notifications, and delete on imported devices.
View Last Synced Information
- Go to Setup > Apps & Add-ons > Integrations > Third Party Integrations.
- On the Microsoft Intune card, click Synced info.
The synced information includes the number of assets Added, Updated, and Removed. You can also see details of the next scheduled sync.
Besides viewing the last sync information, you can use Sync now to sync the device manually.
Disable Microsoft Intune Integration
To disable Microsoft Intune Integration,
- Go to Setup > Apps & Add-ons > Integrations > Third Party Integrations.
- On the Microsoft Intune card, toggle off to disable the integration.
After disabling, imported devices will remain in the application. However, the device information will not be synced with Microsoft Intune, and Intune actions cannot be performed on imported devices from the ServiceDesk Plus MSP Cloud.
If the SDAdmin who authorized the integration is deleted or their role is downgraded, the integration will be disabled.
To resume syncing devices from Microsoft Intune, an active SDAdmin must re-enable the integration.
To resume syncing devices from Microsoft Intune, an active SDAdmin must re-enable the integration.
Permissions
Permission | Description |
DeviceManagementManagedDevices.ReadWrite.All | Allows the app to read and write the properties of devices managed by Microsoft Intune; however, it does not allow high-impact operations such as remote wipes and password reset on the device's user. |
DeviceManagementManagedDevices.Read.All | Allows the app to read the properties of devices managed by Microsoft Intune. |
DeviceManagementManagedDevices.PrivilegedOperations.All | Allows the app to perform high-impact remote actions on Microsoft Intune-managed devices, such as wiping the device or resetting its passcode. |
Related Articles
Microsoft Intune Devices
Microsoft Intune Devices In ServiceDesk Plus MSP Cloud, devices imported through Microsoft Intune integration are recorded as IT assets and classified as mobile devices and workstations. Click here to know more about Microsoft Intune integration. ...Microsoft Azure Integration
The Microsoft Azure integration provides additional authorization over Microsoft single sign-on. With this integration, you can import users' department and site details along with their basic information from the Azure directory. Role Required: ...SCCM Integration
Organizations using Microsoft SCCM to manage their workstations can now import the workstation data available in SCCM into ServiceDesk Plus MSP Cloud. SCCM integration prevents duplicate scanning of workstations and also imports previously scanned ...Office 365 Calendar Integration
Office 365 Calendar integration allows you to sync a technician's unavailability information, reminders, meetings, and other events in ServiceDesk Plus MSP Cloud with Office 365 Calendar. Any events recorded in either application will be ...Azure DevOps Integration
Azure DevOps is a cloud-based platform that provides a suite of tools to help teams plan, develop, test, and deploy applications. This integration allows you to link requests, changes, and change tasks with Azure DevOps work items and projects. ...