cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

User group based scope tags for distributed IT

fnod
Copper Contributor

‎May 07 2021 07:57 AM

‎May 07 2021 07:57 AM

User group based scope tags for distributed IT

Is there a way to assign scope tags to devices based on user groups? We need to delegate administrative privileges to local country admin.

3,015 Views
0 Likes
3 Replies
Reply
3 Replies
Rudy_Ooms_MVP

‎May 08 2021 02:15 AM

‎May 08 2021 02:15 AM

Re: User group based scope tags for distributed IT

Hi

If I understand you correctly. You could create a custom intune role and assign it to the user group and add the scope tag to it. so only devices etc with that scope are visible to the local country admin

Nicola created a blog about this some time ago.. (if this is what you ment)

https://tech.nicolonsky.ch/intune-scope-tags-rbac-explained/
0 Likes
Reply
fnod

‎May 11 2021 02:39 AM

‎May 11 2021 02:39 AM

Re: User group based scope tags for distributed IT

@Rudy_Ooms_MVP I already read that article, but we cannot apply scope tags to devices based on user groups.

0 Likes
Reply
Thijs Lecomte

‎May 13 2021 11:29 AM

‎May 13 2021 11:29 AM

Re: User group based scope tags for distributed IT

Fnod could you provide some more details on your requirement?

I have a customer that also has a requirement for local IT to support their own devices. We weren't able to create dynamic groups (through name of Autpilot tag). I created a script that retrieves the primary user of a device, checks the 'Company' field of that user and then adds the device to an assigned group.

That assigned group is assigned a scope tag
0 Likes
Reply