Configure Microsoft Entra ID for UZTNA Microsoft Intune Integration

About this task

Use this task to configure the Microsoft Entra ID piece of a Universal ZTNA and Microsoft Intune integration.

Procedure

  1. Log into Microsoft Entra ID.
  2. Go to Manage > App Registrations.
  3. Select New registration.
    The system displays the Register an application page.
  4. Enter an app name and ensure the Single Tenant option is selected under Supported account types.
  5. Go to Manage > API Permissions.
  6. Select Microsoft Graph (1).
    The system displays the Request API permissions page.
  7. Note

    Note

    Application permissions must be granted.
    Select the Applications permissions block.
  8. Search for and select the following items:
    Click to expand in new window
    Main search Specific permission
    Application
    • Application.Read.All
    DeviceManagementManagedDevices
    • DeviceManagementManagedDevices.PrivilegedOperations.All
    • DeviceManagementManagedDevices.Read.All
    DeviceManagementServiceConfig
    • DeviceManagementServiceConfig.Read.All
    Group
    • Group.Read.All
    User
    • User.Read.All
  9. Once they are all enabled, select Update permissions.
  10. To enable permissions, select Grant admin consent for <domain>.
    Click to expand in new window
    Once complete the system displays the API permissions.
  11. Go to Manage > Certificates & secrets.
  12. Select New client secret. The system displays the Add a client secret page.
    1. Enter a description and select an expiry time from the drop-down list.
    2. Select Add.
      In the Value column the secret value is revealed.
  13. Copy the secret value and store it in a secure place.
    Note

    Note

    The secret value can only be viewed from this screen. If you navigate from this screen, the value will no longer be accessible.
  14. Select Overview and copy the Application (client) ID and the Directory (tenant) ID.

What to do next

Configure Universal ZTNA for Microsoft Intune Integration
9038015-00 Rev AB