How to configure the Microsoft Intune Integration as a Microsoft SI

Microsoft Procedures
References to any Microsoft-related procedures are accurate as of date of this topic being published / updated, and N-abledoes not guarantee their accuracy or validity.

Using the System Integrator (SI) Microsoft Intune account, as the MSP you will manage your customers M365 Services through your customers' own subscriptions/tenants.

This type of N-able N-central integration requires that you as the MSP sets up integration directly to your customers Intune account for each of your customers. As this is a direct setup from customer to MS Intune, there is no customer mapping. The recommended setup is to use the CSP model if available.

CSP and SI Cannot Co-exist
A CSP setup and SI setup cannot coexist under the same SO in this release of N-central.

The SI model should ONLY be used when the CSP model is not available or will not work. The CSP model is the ideal setup for N-able N-central.

  1. At the SO level, navigate to Integrations > Integrations Management.
  2. Click Activate on the line that includes Microsoft Intune.
  3. Verify that the account being used is NOT a CSP-level account:

    The account you are using cannot have 'Intune' in the name.

    1. In another browser tab, go to https://partner.microsoft.com/.
    2. Login with an account that has the Global administrator role for the tenant in Intune.
    3. Go to the Dashboard.
    4. Navigate to CSP > Customers.
    5. In the window pane on the right, verify that child customer accounts do not display.
  4. Verify that the SO has been activated:
    1. Navigate to Integrations > Integrations Management.
    2. Confirm that Microsoft Intune is shown as being activated:

  5. Navigate from the SO level to the Customer level.

  6. Click Integrations > Microsoft Intune > Setup.
    A prompt will ask you to authenticate the account using the Microsoft Identity Platform.
  7. Click Open Microsoft Identity Platform to launch the Intune authentication.
    This will launch a Microsoft authentication window.
  8. Login with an account that has the Global administrator role for the tenant in Intune.
  9. Click Next.
  10. Accept the "MS Intune Application".
    The following message will display: "You have successfully authenticated this Microsoft Intune account with N-central. You can close this window."
  11. Go to Microsoft Endpoint Manager.
    1. Confirm that the app has been added to your user account. Find your account name in the Users listing, then click Applications in the Manage pane.
    2. You will need to set up each customer individually in N-central.
  12. At that Customer level in N-able N-central, navigate to Integrations > Microsoft Intune > Setup.
    A prompt will ask you to authenticate the account using the Microsoft Identity Platform.
  13. Click Open Microsoft Identity Platform to launch the Intune authentication.
    This will launch a Microsoft authentication window.
  14. Login with your customer's Intune administrator account, or your credentials for that customer.
    These credentials are specific only to the customer you are setting up.
  15. Accept the "MS Intune Application".
    The following message will display: "You have successfully authenticated this Microsoft Intune account with N-central. You can close this window."
  16. Go to Microsoft Endpoint Manager.
    1. Confirm that the app has been added to your user account. Find your account name in the Users listing, then click Applications in the Manage pane.
    2. Refresh the page to update.
    3. You will see the following confirming the authentication:
  17. The customer has now been set up successfully.