March 16, 2023

Dynamic group

8 Comments / Intune /

Dynamic group is the group which adds and removes group members automatically using membership rules based on member attributes.

We can create complex attribute-based rules to enable dynamic memberships for groups.

Dynamic group membership reduces the administrative overhead of adding and removing users. 


To create a Dynamic Security Group, follow the below steps:


Log into Azure portal (https://portal.azure.com/or Intune portal (https://endpoint.microsoft.com/)

Go to Groups, Click New group.


Choose Security as group type.

Give the security group a Name, and a Description (Optional)

Choose Dynamic device as Membership type



Click the Add dynamic query tab



Choose attribute (Ex: enrollmentprofilename) in the first drop down list (Property)

Choose condition (Ex: match) from the second drop down list (Operator)

In the third field (value) enter the Value (ex: enrollment profile name)

Click Add query – click Save



Click on Create and your Group will be created. 

Members will get automatically added/removed as per membership rules.


Few examples of Dynamic Menmbership rule syntax –

user.department -eq “Sales“,

user.country -eq “value“,

user.objectId -ne null,

(user.objectId -ne null)
-and (user.userType -eq “Member”),

device.objectId -ne null,

 

Note: We can create a dynamic group for devices or for users, but we can’t create a rule that contains both users and devices.

We can’t create a device group based on the device owners’ attributes. Device membership rules can only reference device attributes.


 Details and reference link –  https://docs.microsoft.com/en-us/azure/active-directory/enterprise-users/groups-dynamic-membership

Dynamic group Read More »

User Creation in Azure Active Directory

1 Comment / Azure AD, Intune /
Let’s learn to create new user in Azure active Directory in very simple steps. Also we will learn to assign License to the user.

To Create User in Azure Active Directory

Log in to Azure Portal (portal.azure.com)

Open Azure Active Directory

Click on Users.


 

Now Go to All users (preview), Click on New user-> Create New user


Now fill all the required details and click on Create


You can view or search the newly created user in All users view


Once we have created the new User, the next step is to assign required License/s to the user.
To Assign the License

Go to All users (preview), Open the User’s Profile by clicking on Users Name

Go to Licenses, Click on Assignments,

 

Select the License and click on Save 

Now you can see that the License has been assigned.

 
Note: Location must be selected, to assign the license to the user.

User Creation in Azure Active Directory Read More »

Microsoft Intune – Introduction

3 Comments / Intune /

Microsoft Intune is the SaaS solution provided by Microsoft. Microsoft Intune is a cloud-based desktop and mobile device management tool. This supports Mac-OS, iOS, Android, and Windows 10. This cloud solution is used as a modern management tool

Microsoft Intune is a cloud-based service that focuses on mobile device management (MDM) and mobile application management (MAM). It helps you protect your workforce’s corporate data by managing devices and apps. You control how your organization’s devices are used, including mobile phones, tablets, and laptops. … Intune is part of Microsoft’s Enterprise Mobility + Security (EMS) suite

Microsoft Intune launched in 2011 as Windows Intune. The name change to Microsoft Intune was announced in 2014.

Microsoft Intune launched in 2011 as Windows Intune. The name change to Microsoft Intune was announced in 2014.

Eight years later, in 2019, Microsoft decided to join its Intune unified endpoint management (UEM) platform with its Configuration Manager (ConfigMgr), enabling users to access both with just one interface.

A new service called “Microsoft Endpoint Manager” brings together System Center Configuration Manager (SCCM) and the Microsoft Intune mobile management service.

Intune is available: As a stand-alone Azure service. Included with Microsoft 365 and Microsoft 365 government. As Mobile Device Management in Microsoft 365, which consists of some limited Intune features.

Microsoft Intune – Introduction Read More »

Subscribe to my blog to get notified of new posts by email.