Microsoft Intune Spoke
Summarize
Summary of Microsoft Intune Spoke
The Microsoft Intune spoke enables ServiceNow customers to manage devices and applications within their Microsoft Intune account directly from the ServiceNow instance. This integration supports automation of various device and application management tasks through prebuilt subflows and actions, enhancing operational efficiency.
Show less
Key prerequisites: It requires an Integration Hub subscription and several dependent plugins including the Microsoft Entra ID Spoke, IntegrationHub Action Steps, and others. Additionally, the Client Software Distribution 2.0 application must be installed to use many of the advanced subflows and actions.
Supported versions: This spoke is designed for Microsoft Intune API version v1 and may be compatible with later versions. Note that application deployment on Android devices is not supported.
Key Features
- Sample Subflows: Includes automation templates for creating software configurations, configuring groups, deploying applications, discovering and updating data, looking up details, and revoking application access in Microsoft Intune.
- Spoke Actions: Offers a range of actions categorized under Application Management, Device Management, Metadata Retrieval, and Data Management to automate tasks such as retrieving application or device details, syncing devices, updating device information, and preparing software data for deployment or revocation.
- Modules and Tables: Adds modules to the ServiceNow instance for managing applications, groups, configurations, deployments, and server instances associated with Microsoft Intune. These facilitate visibility and control over Intune resources directly within ServiceNow.
- Connection and Credential Management: Uses Integration Hub aliases to manage OAuth credentials and connection information efficiently, simplifying multi-environment setups and reducing maintenance effort.
Practical Benefits for ServiceNow Customers
- Streamlines Microsoft Intune device and application management workflows by integrating them into ServiceNow.
- Enables automation of common administrative tasks through reusable subflows and actions, reducing manual effort and errors.
- Provides centralized visibility and control over Intune-managed assets via native ServiceNow modules and tables.
- Supports scalable credential and connection management ensuring secure and flexible integration across environments.
Manage devices and applications in the Microsoft Intune account from your ServiceNow instance.
Request apps on the Store
Visit the ServiceNow Store to view all the available apps, and for information about submitting requests to the store. For cumulative release notes information for all released apps, see the ServiceNow Store version history release notes.
Integration Hub subscription
This spoke requires an Integration Hub subscription. For more information, see Legal schedules - IntegrationHub overview.
Spoke version
Supported versions
This spoke was built for the Microsoft Intune Application programming Interface (API) version v1, but may be compatible with the later versions.
Spoke dependencies
- Microsoft Entra ID Spoke (formerly Microsoft Azure Active Directory spoke)
- ServiceNow IntegrationHub Action Step - REST (com.glide.hub.action_step.rest)
- ServiceNow IntegrationHub Runtime (com.glide.hub.integration.runtime)
- Complex Object (com.glide.cobject)
- ServiceNow IntegrationHub Action Template - Data Stream (com.glide.hub.action_type.datastream)
Spoke subflows
The Microsoft Intune spoke provides sample subflows to demonstrate automating tasks. To customize a sample subflow, copy it to required application scope. Available sample subflows include:
| Subflow | Description |
|---|---|
| Create Software Configuration | Enables a CSD agent to create the software configuration record of the specified Microsoft Intune application. |
| Configure Group | Enables a CSD agent to create and configure the Microsoft Intune group in Intune Admin Portal. |
| Deploy Application | Adds the provided user or device to a group in the Microsoft Intune server. |
| Discover and Store Data | Discovers the data from the Microsoft Intune server and updates the records in the Application [sn_ms_intune_spoke_application], Group [sn_ms_intune_spoke_group], and Deployment [sn_ms_intune_spoke_deployment] tables. |
| Look up Application Details | Retrieves the additional deployment details for applications and updates the respective records in the deployment table. |
| Look up Configuration Data | Retrieves configuration data for the specified requested item or software configuration record. |
| Look up Groups | Returns the list of install groups or uninstall groups associated with given application id. |
| Revoke Application | Removes the provided user or device from the given group in the Microsoft Intune server. |
Spoke actions
The Microsoft Intune spoke provides actions to automate tasks when events occur in your ServiceNow instance. Available actions include:
| Category | Action | Description |
|---|---|---|
| Application Management | Get Managed Application | Retrieves the details of an application. |
| Look up Application Assignments | Retrieves the application assignment data from the Microsoft Intune server. | |
| Look up Managed Applications | Retrieves a list of all the applications. | |
| Device Management | Delete Managed Device | Deletes a managed device. |
| Get Managed Device | Retrieves the details of a managed device. | |
| Look up Managed Devices | Retrieves the details of a managed device. |
|
| Look up Managed Devices By Application | Retrieves the details of a managed device within an application. |
|
| Sync Managed Device | Forces a managed device to check in with Microsoft Intune to retrieve and apply any pending actions, policies, and configuration updates. | |
| Look up Managed Devices By User | Retrieves the details of a managed device for a user. |
|
| Update Managed Device | Updates the details of a managed device. |
|
| Metadata Retrieval | Look up Application ID | Returns the Application ID for the dynamic input of the Lookup Managed Devices By Application action. |
| Data Management Important: To use these actions, install the Client Software Distribution 2.0 application. |
Look up Configuration Data | Retrieves the configuration data from a requested item or software configuration. |
| Prepare Software Data | Prepares the software data for the specified requested item that can be used for deployment or revocation. |
Spoke module
| Module | Description | Table |
|---|---|---|
| Applications | Displays the list of applications from the Microsoft Intune server. | Application [sn_ms_intune_spoke_application] |
| Groups | Displays the list of groups from the Microsoft Intune server. | Group [sn_ms_intune_spoke_group] |
| Configurations | Stores software configuration details for the applications. | Configuration [sn_ms_intune_spoke_sf_config] |
| Deployments | Displays the list of deployments on the Microsoft Intune server. | Deployment [sn_ms_intune_spoke_deployment] |
| Server Instances | Stores details of the provider servers. | Server Instance [sn_ms_intune_spoke_server] |
Connection and credential alias requirements
Integration Hub uses aliases to manage connection and credential information, and OAuth credentials. Using an alias eliminates the need to configure multiple credentials and connection information profiles when using multiple environments. If the connection or credential information changes, you don't need to update any actions that use the connection.
For information about setting up the spoke, see Set up the Microsoft Intune spoke.