Configure the Microsoft Intune connector

The Microsoft Intune connector is configured in Snow Integration Manager (SIM). For more information on SIM, refer to Snow Integration Manager.

The Microsoft Intune connector uses a Graph API connection. In Snow Integration Manager, add the Microsoft Intune connector and configure the settings:

  1. In the Directory id box, enter the value for the directory id as saved in Locate Directory (tenant) ID.

    intune.png
  2. In the Application id box, enter the value for the application id as saved in Locate Application (client) ID.

  3. In the Application secret box, enter the value for the client secret as saved in Locate Client secret.

  4. In the Redirect Uri box, enter http://localhost:8080.

  5. To collect data only for mobile devices, select the Exclude non-mobile devices checkbox.

  6. In the Initial aggregation length (months) box, select the number of months for initial aggregation of inventory data.

  7. In the Page size box, select the page size when fetching data from the Microsoft Graph API.

    Note

    Possible values for page size are between 0 and 999.

    Default value is 0. If the value is set to 0, no page size is specified in the API calls.

    Do not change the page size value if there are no performance issues with using the default page size.

  8. To reset an ongoing incremental aggregation, select Clear Last Aggregation Date.

  9. In the Name box, enter the site name. This will override the global site name set in SIM.

    Note

    At least one of these two values is required. 

  10. Select Get token.

    A web browser window appears.

  11. Enter your username and select Next.

    Note

    To sign in to the web form, you must have the role of either a Global admin or an Intune admin.

    In Intune, if the setting Users can consent to apps accessing company data on their behalf in User settings > Enterprise applications is disabled, there is an additional requirement for the user with Intune admin role. That user needs to have an additional role as Application Administrator. If the user is a global admin, no additional roles are required.

  12. Enter your password and select Sign in.

  13. If prompted, enable the permissions requested by the application.

    If a message saying that the token is successfully acquired appears, go to Step 15.

  14. If the authorization process from Step 10 to Step 13 does not work, follow this alternative process for authorization in an external browser window instead:

    1. Select Authorize in browser.

      A web page appears in an external web browser.

    2. Enter your username and select Next.

    3. Enter your password and select Sign in.

    4. If prompted, enable the permissions requested by the application.

      A web page with the authorization code in the URL appears.

    5. Copy the entire URL from that page and paste it in the Uri from browser textbox.

    6. Select Get token.

      A message saying that the token is successfully acquired appears. Go to Step 15.

  15. Select Ok.

  16. To check if the connection can be established, select Test connection.

  17. If the connection could not be established, verify that the connector has been configured according to Step 1 to Step 15.

  18. Select OK to save the configuration.

    After configuring the connection, you can aggregate data from it or schedule an aggregation.