- Install both the Azure AD and Intune connectors to allow user-device-app links to be created
- Configure the Azure AD connector to:
- Create and Update Users Migrations (For User Migrations, Get an Intune group....)
- Create and Update Devices
- Application Update Options: This links apps where a user or device is a assignment group. It requires that the deployment group is specified in each application. The Intune connector will create links based on installs (rather than group membership) which is generally preferable.
- Configure the Intune connector to
- Import Managed Applications - Yes
- Import Discovered Applications - This brings in the data from the "Add/Remove Programs" area, it's optional as it produces a lot of app records.
- Import Devices - No, assuming they are hybrid joined. If some devices are modern management only, this option should be enabled. It may be useful to add Hostname Filter to match the devices which are only in Intune
- Update Devices - Yes, this adds hardware information, last seen dates etc which are not available in Azure
- Mapping Rules - Yes - Application installation status is used to create links for user and devices
- Use Device Install Status: Link Apps-Devices-Users is recommended
- Use User Install Status: Some apps are assigned to a user. This option will create App-User links based on those assignments. Devices are not included here. Link Apps-Users is recommended
- In the Details Tab in Devices, turn on the following fields to aid troubleshooting:
- Azure Object Id
- Azure Device Id