Event banner

Feedback wanted! IT made easy with low-code workflows

Event Ended
Wednesday, Nov 29, 2023, 08:30 AM PST
Online

Event details

Let's talk! Find out what's available to simplify IT tasks with automation and orchestration. Share your company's goals around automating Intune with low-code/no-code solutions. Help shape Intune's ...
Char_Cheesman
Updated Dec 27, 2024
Technical Takeoff
JEngel05's avatar
JEngel05
Brass Contributor
Nov 29, 2023

We have been trying to implement automations to try and fill missing gaps of Entra ID/Intune. Some examples: Automation to evaluate and fix/set primary user in Intune, creating custom Entra groups based on device information, potentially creating a custom log analytics database with custom endpoint information which can be used with further automations etc.

 

One of the biggest challenges has been getting all this approved by our security and governance teams. We can securely send scripts to endpoints using proactive remediations, but there was a challenge of sending data to an API all while having that API secured. We don't want those APIs wide open where anyone from any device can send data to it.

Dave Randall's avatar
Dave Randall
Icon for Microsoft rankMicrosoft
Nov 29, 2023
Your best bet for Intune APIs is to use delegated auth for all your API calls. That gives you fine grained permissions from Intune RBAC roles to ensure that the script/caller doesn't have excessive permissions. App-only auth provides broader permissions than delegated auth via Intune RBAC roles.
Date and Time
Nov 29, 20238:30 AM - 9:00 AM PST