{"id":10606,"date":"2018-05-25T12:41:23","date_gmt":"2018-05-25T19:41:23","guid":{"rendered":"https:\/\/www.microsoft.com\/insidetrack\/blog\/?p=10606"},"modified":"2023-06-09T11:13:46","modified_gmt":"2023-06-09T18:13:46","slug":"migrating-mobile-device-management-to-intune-in-the-azure-portal","status":"publish","type":"post","link":"https:\/\/www.microsoft.com\/insidetrack\/blog\/migrating-mobile-device-management-to-intune-in-the-azure-portal\/","title":{"rendered":"Migrating mobile device management to Intune in the Azure portal"},"content":{"rendered":"<div class=\"m-alert f-error\" role=\"alert\">\n<div>\n<div class=\"c-glyph glyph-incident-triangle\" aria-label=\"Error message\"><\/div>\n<p class=\"c-paragraph\">This content has been archived, and while it was correct at time of publication, it may no longer be accurate or reflect the current situation at Microsoft.<\/p>\n<\/div>\n<\/div>\n<p>In a cloud-only future, our streamlined infrastructure will support modern management of personal and corporate devices on the Microsoft network. To progress toward this vision, we migrated our hybrid mobile device management (MDM) configuration to Microsoft Intune in the Azure portal because it offers greater scalability and ease of management. Our migration process and tools import data from Configuration Manager, providing an easy, phased transition that has been transparent for employees.<\/p>\n<div id=\"ITShowCase-RichContent-6szh7d7\" data-m=\"{&quot;cN&quot;:&quot;R2RichContentBlock 1&quot;,&quot;cT&quot;:&quot;Module_itshowcase-RichContent&quot;,&quot;id&quot;:&quot;m2r2a2&quot;,&quot;sN&quot;:2,&quot;aN&quot;:&quot;r2a2&quot;}\" data-module-id=\"ITShowCase-ArticlePage|primaryR2|coreui-region|ITShowCase-RichContent-6szh7d7|ITShowCase-RichContent\">\n<div class=\"IT-richcontent\">\n<p>Microsoft employees use various operating systems across a wide range of corporate and personal device types for work. Microsoft Digital\u00a0traditionally managed mobile devices and applications through a common set of tools in a hybrid environment of System Center Configuration Manager and Microsoft Intune. To accelerate modern management for Windows 10, we\u2019ve recently started the transition to standalone mobile device management (MDM) using Microsoft Intune in the Azure portal.<\/p>\n<p>Hybrid MDM uses Intune as the cloud delivery channel for policies, profiles, and applications to devices, and Configuration Manager on-premises infrastructure to administer content and manage the devices. The hybrid implementation uses the same on-premises infrastructure and administrative console to manage mobile devices with Intune, and PCs and servers with the Configuration Manager client. As we move toward a cloud-only future and modern management, we\u2019re working to streamline our physical infrastructure and reduce the overall number of traditionally managed clients to provide a modern workplace that\u2019s always updated, always protected, and easily scalable.<\/p>\n<p>More personal devices are being used for work, and more of our identity services are moving to the cloud. The number of traditionally domain-joined PCs at Microsoft is beginning to trend down, and the number of devices managed through Intune is trending upward. Scalability and ease of management are a couple of key factors in our decision to migrate to Intune in the Azure portal as our modern service platform. Intune in the Azure portal provides many advanced features, such as:<\/p>\n<ul class=\"c-list\">\n<li><strong>An integrated enterprise mobility management platform.<\/strong>\u00a0Provides an integrated cloud platform and admin experience in Azure portal for Intune, Azure Active Directory (Azure AD) Premium, and Azure Information Protection.<\/li>\n<li><strong>Mobile device management.<\/strong>\u00a0Offers rich MDM and information protection capabilities.<\/li>\n<li><strong>Scale<\/strong>\u00a0<strong>and agility.<\/strong>\u00a0Simplifies setup and the rapid delivery of new capabilities. We can deploy and manage mobile devices without worrying about scaling up the physical infrastructure.<\/li>\n<li><strong>Role-based access control.<\/strong>\u00a0Supports restricting access to administrative functions, based on assigned roles and scopes.<\/li>\n<li><strong>Programmatic access (API).<\/strong>\u00a0Supports Intune APIs in Microsoft Graph, and has SDK and PowerShell management options.<\/li>\n<li><strong>Web console.<\/strong>\u00a0Includes an HTML 5-based console built on web standards with support for most modern web browsers.<\/li>\n<li><strong>Advanced reporting<\/strong>. Provides the ability to create customized reports.<\/li>\n<\/ul>\n<h2>A new process and tools offer an easier migration path<\/h2>\n<p>Previously, moving from hybrid MDM, using Configuration Manager and Intune, to Intune in the Azure portal required a one-time authority switch. This approach was challenging because it required IT to move the entire tenant at once and forced administrators to reconfigure all settings in Intune, including re-enrolling all devices. To provide an easier transition, Microsoft introduced a new migration process of moving from hybrid to standalone Intune in a phased manner without disrupting the end-user experience. The new process consists of three components: Microsoft Intune Data Importer, mixed authority, and an improved MDM authority switch.<\/p>\n<h3>Microsoft Intune Data Importer<\/h3>\n<p><a class=\"c-hyperlink\" href=\"https:\/\/github.com\/ConfigMgrTools\/Intune-Data-Importer\/releases\" target=\"_blank\" rel=\"noopener\" aria-label=\"Read more about Microsoft Intune Data Importer\">Microsoft Intune Data Importer<\/a>\u00a0is a new administrator design tool that\u2019s designed to automatically copy device management data created in Configuration Manager to an Intune environment. Importable objects include configuration items, certificate profiles, email profiles, VPN profiles, wireless network profiles, compliance policies, terms and conditions, and apps. The importer tool helps address one of the biggest challenges we were facing when looking at moving from hybrid to standalone\u2014 the need to recreate all profiles, policies, and apps.<\/p>\n<h3>Mixed authority<\/h3>\n<p>Using mixed authority, we can selectively migrate users from our existing hybrid MDM configuration to Intune in controlled phases. This means that now we can migrate some groups of users to the standalone implementation while continuing to use the hybrid MDM environment for the remaining users and devices. After a user is migrated, we can use Intune to create and deploy policies, initiate remote actions, and enroll new devices.<\/p>\n<p><strong>Note:<\/strong>\u00a0Tenant-level policies, such as our iOS APNs certificate, will function for users and devices managed by either hybrid MDM or Intune, but will be editable only via the Configuration Manager console while we\u2019re using mixed authority mode.<\/p>\n<h3>Improved MDM authority switch<\/h3>\n<p>After we\u2019re satisfied with testing Intune in the Azure portal, we can initiate a tenant MDM authority switch through the Configuration Manager console to migrate the remaining users from the hybrid MDM environment. All the policies and apps that were migrated from the Configuration Manager console, as well as tenant-level policies, will be available for configuration in the Intune console. Most importantly, enrolled devices aren\u2019t required to re-enroll\u2014making the migration entirely transparent to users.<\/p>\n<h2>Migrating our hybrid environment to standalone<\/h2>\n<p>We strive to provide employees a consistent experience regardless of the device they use, how often they use it, or what platform it runs on. At Microsoft, we require any device that\u2019s used for work to be enrolled in Intune or domain-joined in Active Directory or Azure AD. At Microsoft, we have approximately 300,000 domain-joined devices that we manage with System Center Configuration Manager, and approximately 125,000 devices that we manage using Intune, including:<\/p>\n<ul class=\"c-list\">\n<li>40,000 iOS devices.<\/li>\n<li>17,000 Android devices.<\/li>\n<li>20,000 Windows Phone devices.<\/li>\n<li>34,000 Windows 10 devices.<\/li>\n<li>3,000 Mac devices.<\/li>\n<\/ul>\n<p>Before we allow any device to access corporate resources such as email, SharePoint Online, Skype for Business, OneDrive for Business, or any applications or services built on Office 365, we need to make sure that:<\/p>\n<ul class=\"c-list\">\n<li>The device and its apps are up to date with the latest version of the operating system and any security updates.<\/li>\n<li>Work data on the device is secured through encryption and information protection technology.<\/li>\n<li>The identity of the person using the device is verified through multi-factor authentication.<\/li>\n<\/ul>\n<p>We started our migration using a phased approach that\u2019s allowing us to migrate and test subsets of users and devices while the remaining users and devices are still being managed by our\u00a0hybrid MDM environment. We wanted to make sure that migration process would be transparent to our users.<\/p>\n<h3>Solution architecture<\/h3>\n<div class=\"m-image float-left\">\n<figure id=\"attachment_10608\" aria-describedby=\"caption-attachment-10608\" style=\"width: 625px\" class=\"wp-caption alignnone\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-10608 size-full\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/05\/6455-fig1.png\" alt=\"Graphic contains side-by-side comparison of the hybrid architecture, using Configuration Manager and Intune, and the standalone architecture using only Intune.\" width=\"625\" height=\"437\" srcset=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/05\/6455-fig1.png 625w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/05\/6455-fig1-300x210.png 300w\" sizes=\"(max-width: 625px) 100vw, 625px\" \/><figcaption id=\"caption-attachment-10608\" class=\"wp-caption-text\">Figure 1. Comparison of hybrid Configuration Manager with Intune and the standalone Intune solution architectures<\/figcaption><\/figure>\n<\/div>\n<h3>Assessing our hybrid environment<\/h3>\n<p>As part of our pre-migration assessment, we ran the\u00a0<a class=\"c-hyperlink\" href=\"https:\/\/github.com\/ConfigMgrTools\/Intune-Data-Importer\/releases\" target=\"_blank\" rel=\"noopener\" aria-label=\"Read more about Intune Data Importer tool\">Intune Data Importer tool<\/a>, without performing the actual import, to collect data about objects we selected from our Configuration Manager hierarchy.\u00a0<a class=\"c-hyperlink\" href=\"https:\/\/docs.microsoft.com\/en-us\/sccm\/mdm\/deploy-use\/migrate-import-data\" target=\"_blank\" rel=\"noopener\" aria-label=\"Read more about Importing Configuration Manager data to Microsoft Intune\">Importing Configuration Manager data to Microsoft Intune<\/a>\u00a0saves us time by automating the process of recreating objects from Configuration Manager to Intune, plus it provides details about the objects we can import and information about the objects that can\u2019t be imported. This step was useful in helping us identify which objects would need to be recreated in Intune rather than imported\u2014helping us better plan our migration phases and more accurately estimate the time required to mitigate the objects that had errors.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-10615 size-full\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2018\/05\/6455-table1.png\" alt=\"Table of sample import statistics\" width=\"1270\" height=\"434\" srcset=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2018\/05\/6455-table1.png 1270w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2018\/05\/6455-table1-300x103.png 300w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2018\/05\/6455-table1-1024x350.png 1024w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2018\/05\/6455-table1-768x262.png 768w\" sizes=\"(max-width: 1270px) 100vw, 1270px\" \/><\/p>\n<p>While analyzing the information about importable objects and errors, we took that opportunity to identify stale or obsolete objects\u2014such as test apps, idle devices, or outdated policies\u2014that might no longer be required. Beyond simply being an exercise in our migration process, this activity gave us an opportunity to critically look at our processes, and to streamline our environment\u2014this is key toward our goal of implementing cloud-only, modern management at Microsoft.<\/p>\n<h3>Preparing Intune<\/h3>\n<p>After assessing our environment, we began the task of\u00a0<a class=\"c-hyperlink\" href=\"https:\/\/docs.microsoft.com\/en-us\/sccm\/mdm\/deploy-use\/migrate-prepare-intune\" target=\"_blank\" rel=\"noopener\" aria-label=\"Read more about preparing Intune for user migration\">preparing Intune for user migration<\/a>. As a prerequisite, we needed to validate that we had Intune license assignments for all users. Because we were coming from a hybrid environment, we already had Network Device Enrollment Service and Exchange connectors installed. We also needed to ensure that all the required administrative access permissions for Configuration Manager and Intune were granted.<\/p>\n<p><strong>Note:<\/strong>\u00a0If you\u2019re not already an Azure AD tenant admin, an Azure AD admin will need to make the Intune\u00a0Data Importer tool a registered app in Azure AD and provide user access to the users who will be performing the migration.<\/p>\n<p>We decided which Intune roles, and their scope and assignments, we needed. Examples include app manager, policy manager, profile manager, and helpdesk operator. We then created Azure AD groups and made object assignments to these groups.<\/p>\n<h3>Planning and testing our migration approach<\/h3>\n<p>We can configure a mixed MDM authority to\u00a0<a class=\"c-hyperlink\" href=\"https:\/\/docs.microsoft.com\/en-us\/sccm\/mdm\/deploy-use\/migrate-mixed-authority\" target=\"_blank\" rel=\"noopener\" aria-label=\"Read more about change the MDM authority for specific users\u00a0\">change the MDM authority for specific users\u00a0<\/a>within the same tenant by selecting some users to be managed in Intune while all other devices continue to be managed with hybrid MDM. As part of planning and testing our approach, we created a small number of test accounts and enrolled those devices in hybrid MDM. We added those test accounts to a migration Active Directory security group. Because groups can be synced to Azure AD groups, deployments for the imported objects can be imported if the user collections in Configuration Manager are based on Active Directory groups. Deployments will appear as assignments in the Intune console. After we migrated the test migration group and validated the functionality of objects imported from Configuration Manager and those that were newly created, we excluded the migration collection from Configuration Manager. After the migration user collection was updated, Intune cloud user sync removed the users from Configuration Manager and Intune hybrid MDM, and the standalone Intune environment became their management authority.<\/p>\n<h3>Migrating users in controlled phases<\/h3>\n<p>After we finished pre-migration planning and testing, we began migrating small groups of users. As each group was migrated, and functionality was validated, we increased the number of targeted users in each phase.<\/p>\n<div>\n<figure id=\"attachment_10609\" aria-describedby=\"caption-attachment-10609\" style=\"width: 636px\" class=\"wp-caption alignright\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-10609 size-full\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/05\/6455-fig2.png\" alt=\"Illustration contains an arrow that shows the five pilot and deployment phases and the increasing user targets during the phase progression.\" width=\"636\" height=\"139\" srcset=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/05\/6455-fig2.png 636w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/05\/6455-fig2-300x66.png 300w\" sizes=\"(max-width: 636px) 100vw, 636px\" \/><figcaption id=\"caption-attachment-10609\" class=\"wp-caption-text\">Figure 2. Phased approach to migration<\/figcaption><\/figure>\n<\/div>\n<h4>Performing test cases to validate end-to-end device manageability<\/h4>\n<p>Mixed authority made it possible for us to test that standalone functionality was working as expected, for each small subset of users, on the migration collection before we started migrating additional users. Our migration testing included:<\/p>\n<ul class=\"c-list\">\n<li>Installing apps from the company portal on migrated user devices for all platforms.<\/li>\n<li>Validating resource access certifications and profiles, including wireless network configurations and VPN.<\/li>\n<li>Ensuring conditional access works properly after the migration, for both existing and new users.<\/li>\n<li>Enrolling a new device for a migrated user.<\/li>\n<li>Navigating to the Intune web portal and reviewing the device and user reports.<\/li>\n<\/ul>\n<p>As soon as we complete the migration of all the remaining users, we will initiate the MDM authority switch from Configuration Manager and Intune to Intune in the Azure portal.<\/p>\n<h3>Changing our MDM authority to Intune<\/h3>\n<p>Changing our MDM authority to Intune is the last phase, and final milestone, of our migration. After we ensured that all users and devices managed by hybrid MDM were successfully migrated to Intune, we completed the steps in the Configuration Manager console to delete our existing Intune subscription and\u00a0<a class=\"c-hyperlink\" href=\"https:\/\/docs.microsoft.com\/en-us\/sccm\/mdm\/deploy-use\/change-mdm-authority\" target=\"_blank\" rel=\"noopener\" aria-label=\"Read more about change our tenant-level MDM authority\">change our tenant-level MDM authority<\/a>.<\/p>\n<h2>Reporting<\/h2>\n<p>We rely on reporting for planning, analyzing business logic, and demonstrating service accountability through metrics. There are three options available for reporting, and we\u2019re currently using all three options based on our business needs:<\/p>\n<ul class=\"c-list\">\n<li>We use the\u00a0<a class=\"c-hyperlink\" href=\"https:\/\/portal.azure.com\/\" target=\"_blank\" rel=\"noopener\" aria-label=\"Read more about Microsoft Azure\">Microsoft Azure<\/a>\u00a0portal for overview and export details such as individual devices, apps, users, and policies. It\u2019s very useful for reporting counts and amounts.<\/li>\n<li>We use\u00a0<a class=\"c-hyperlink\" href=\"https:\/\/developer.microsoft.com\/en-us\/graph\/docs\/api-reference\/beta\/resources\/intune_graph_overview\" target=\"_blank\" rel=\"noopener\" aria-label=\"Read more about Intune API in Microsoft Graph\u00a0\">Intune API in Microsoft Graph\u00a0<\/a>for real-time reporting to which we want to apply business and\/or custom logic to extract custom variables.<\/li>\n<li>The\u00a0<a class=\"c-hyperlink\" href=\"https:\/\/docs.microsoft.com\/en-us\/intune\/reports-nav-create-intune-reports\" target=\"_blank\" rel=\"noopener\" aria-label=\"Read more about Intune Data Warehouse Power BI content pack\u00a0\">Intune Data Warehouse Power BI content pack\u00a0<\/a>is useful for reporting historical or trending data for custom reporting needs. It\u2019s refreshed at regular intervals, though it\u2019s not considered real-time data, and is useful in helping us transform data into high-level views that can be consumed by a broader audience, including stakeholders.<\/li>\n<\/ul>\n<h2>Lessons learned<\/h2>\n<ul class=\"c-list\">\n<li>Include all service and business stakeholders who are dependent on hybrid services in all your planning and pilot phases\u2014for example, enterprise security; app; certificate; resources access; and wireless network, VPN, and helpdesk teams.<\/li>\n<li>Plan for training or brownbag sessions for Intune in the Azure portal prior to beginning your migration. It\u2019s important that support personnel and administrators:\n<ul class=\"c-list\">\n<li>Know how to set up new users and policies.<\/li>\n<li>Are familiar with the new portal.<\/li>\n<li>Can access data.<\/li>\n<li>Are able to troubleshoot helpdesk requests.<\/li>\n<\/ul>\n<\/li>\n<li>Review all reporting consumers and prepare for new experience and tooling requirements. Any legacy reporting that used SQL won\u2019t be available.<\/li>\n<li>Leave some support team members in the hybrid MDM environment until the last migration phase so they can support other hybrid users.<\/li>\n<li>Keep the migration duration short to minimize object changes, app updates, and policy changes, that have to be managed separately in the Configuration Manager console and in the Azure portal.<\/li>\n<li>After you plan the duration of your migration project, plan your tenant level settings accordingly. To avoid certificate renewals during the migration phases, check the validity of device-specific cert renewals\u2014for example, the Apple Push Notification (APNs) certificate.<\/li>\n<li>During user migration phases, plan to take exported user and device data offline from Configuration Manager for validation purposes before each phase. It\u2019s also important to recognize that tenant-level setting and configurations must be managed in Configuration Manager until everything is migrated. Intune roles, such as app manager, policy manager, profile manager, and helpdesk operator, can be assigned only for users who are migrated to Intune.<\/li>\n<li>When assessing your environment, it\u2019s important to make sure that you understand the relationships with collection use and reuse. You will want to make sure that your Intune subscription collection and other collections\u2019 \u201cinclude\u201d or \u201cexclude\u201d settings aren\u2019t used by other Configuration Manager deployment collections.<\/li>\n<li>All tenant level settings must be managed in Configuration Manager until the switch to all users, by default, are managed by Intune.<\/li>\n<li>Automated processes in Configuration Manager might not have counterparts in Intune. For app publishing, we had to rebuild the automated processes we were using in Configuration Manager in Intune using Graph APIs. We recommend that reporting and engineering teams\u00a0<a class=\"c-hyperlink\" href=\"https:\/\/developer.microsoft.com\/en-us\/graph\" target=\"_blank\" rel=\"noopener\" aria-label=\"Read more about learn Graph API\">learn Graph API<\/a>\u00a0for an efficient way to manage Intune, build automation, access real-time data, and create custom reporting.<\/li>\n<\/ul>\n<h2>Next steps<\/h2>\n<p>If you\u2019re thinking about deploying Microsoft Intune and aren\u2019t sure which environment is best for you, read\u00a0<a class=\"c-hyperlink\" href=\"https:\/\/docs.microsoft.com\/en-us\/sccm\/mdm\/understand\/choose-between-standalone-intune-and-hybrid-mobile-device-management\" target=\"_blank\" rel=\"noopener\" aria-label=\"Read more about Choose between Microsoft Intune standalone and hybrid mobile device management with System Center Configuration Manager\">Choose between Microsoft Intune standalone and hybrid mobile device management with System Center Configuration Manager<\/a>\u00a0to help you decide. If you have hybrid MDM and have decided to migrate, download the\u00a0<a class=\"c-hyperlink\" href=\"https:\/\/github.com\/ConfigMgrTools\/Intune-Data-Importer\/releases\" target=\"_blank\" rel=\"noopener\" aria-label=\"Read more about Microsoft Intune Data Importer\">Microsoft Intune Data Importer<\/a>\u00a0and see\u00a0<a class=\"c-hyperlink\" href=\"https:\/\/docs.microsoft.com\/en-us\/sccm\/mdm\/deploy-use\/migrate-hybridmdm-to-intunesa\" target=\"_blank\" rel=\"noopener\" aria-label=\"Read more about Start migrating from hybrid MDM to Intune standalone\">Start migrating from hybrid MDM to Intune standalone<\/a>.<\/p>\n<\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>This content has been archived, and while it was correct at time of publication, it may no longer be accurate or reflect the current situation at Microsoft. In a cloud-only future, our streamlined infrastructure will support modern management of personal and corporate devices on the Microsoft network. To progress toward this vision, we migrated our&#8230;<\/p>\n","protected":false},"author":146,"featured_media":10610,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","enabled":false}}},"categories":[1],"tags":[],"coauthors":[674],"jetpack_publicize_connections":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v22.8 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Migrating mobile device management to Intune in the Azure portal - Inside Track Blog<\/title>\n<meta name=\"description\" content=\"In a cloud-only future, our streamlined infrastructure will support modern management of personal and corporate devices on the Microsoft network. To progress toward this vision, we migrated our hybrid mobile device management (MDM) configuration to Microsoft Intune in the Azure portal because it offers greater scalability and ease of management. Our migration process and tools import data from Configuration Manager, providing an easy, phased transition that has been transparent for employees.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/migrating-mobile-device-management-to-intune-in-the-azure-portal\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Migrating mobile device management to Intune in the Azure portal - Inside Track Blog\" \/>\n<meta property=\"og:description\" content=\"In a cloud-only future, our streamlined infrastructure will support modern management of personal and corporate devices on the Microsoft network. To progress toward this vision, we migrated our hybrid mobile device management (MDM) configuration to Microsoft Intune in the Azure portal because it offers greater scalability and ease of management. Our migration process and tools import data from Configuration Manager, providing an easy, phased transition that has been transparent for employees.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/migrating-mobile-device-management-to-intune-in-the-azure-portal\/\" \/>\n<meta property=\"og:site_name\" content=\"Inside Track Blog\" \/>\n<meta property=\"article:published_time\" content=\"2018-05-25T19:41:23+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-06-09T18:13:46+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/05\/6455-hero.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1040\" \/>\n\t<meta property=\"og:image:height\" content=\"585\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Inside Track \u2013 retired stories\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Inside Track \u2013 retired stories\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"12 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/migrating-mobile-device-management-to-intune-in-the-azure-portal\/\",\"url\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/migrating-mobile-device-management-to-intune-in-the-azure-portal\/\",\"name\":\"Migrating mobile device management to Intune in the Azure portal - Inside Track Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/migrating-mobile-device-management-to-intune-in-the-azure-portal\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/migrating-mobile-device-management-to-intune-in-the-azure-portal\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/05\/6455-hero.jpg\",\"datePublished\":\"2018-05-25T19:41:23+00:00\",\"dateModified\":\"2023-06-09T18:13:46+00:00\",\"author\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/59e5f7b07dae629412c990cc1a63b575\"},\"description\":\"In a cloud-only future, our streamlined infrastructure will support modern management of personal and corporate devices on the Microsoft network. To progress toward this vision, we migrated our hybrid mobile device management (MDM) configuration to Microsoft Intune in the Azure portal because it offers greater scalability and ease of management. Our migration process and tools import data from Configuration Manager, providing an easy, phased transition that has been transparent for employees.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/migrating-mobile-device-management-to-intune-in-the-azure-portal\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.microsoft.com\/insidetrack\/blog\/migrating-mobile-device-management-to-intune-in-the-azure-portal\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/migrating-mobile-device-management-to-intune-in-the-azure-portal\/#primaryimage\",\"url\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/05\/6455-hero.jpg\",\"contentUrl\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/05\/6455-hero.jpg\",\"width\":1040,\"height\":585,\"caption\":\"Woman outside talking on cell phone.\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/migrating-mobile-device-management-to-intune-in-the-azure-portal\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Migrating mobile device management to Intune in the Azure portal\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#website\",\"url\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/\",\"name\":\"Inside Track Blog\",\"description\":\"How Microsoft does IT\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/59e5f7b07dae629412c990cc1a63b575\",\"name\":\"Inside Track \u2013 retired stories\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/image\/ee0de87c339052d5d84852473bd7f213\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/24a8c329ab32afd1bc23fd1658d1acc2?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/24a8c329ab32afd1bc23fd1658d1acc2?s=96&d=mm&r=g\",\"caption\":\"Inside Track \u2013 retired stories\"},\"description\":\"The content on this page was crafted to highlight a specific moment in time or the solutions that have led us to where we are today. It offers valuable insights into our journey and the progress made over the years. Check out the Inside Track blog page for our up-to-date stories around Microsoft.\",\"url\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/author\/insidetrackarchive\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Migrating mobile device management to Intune in the Azure portal - Inside Track Blog","description":"In a cloud-only future, our streamlined infrastructure will support modern management of personal and corporate devices on the Microsoft network. To progress toward this vision, we migrated our hybrid mobile device management (MDM) configuration to Microsoft Intune in the Azure portal because it offers greater scalability and ease of management. Our migration process and tools import data from Configuration Manager, providing an easy, phased transition that has been transparent for employees.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.microsoft.com\/insidetrack\/blog\/migrating-mobile-device-management-to-intune-in-the-azure-portal\/","og_locale":"en_US","og_type":"article","og_title":"Migrating mobile device management to Intune in the Azure portal - Inside Track Blog","og_description":"In a cloud-only future, our streamlined infrastructure will support modern management of personal and corporate devices on the Microsoft network. To progress toward this vision, we migrated our hybrid mobile device management (MDM) configuration to Microsoft Intune in the Azure portal because it offers greater scalability and ease of management. Our migration process and tools import data from Configuration Manager, providing an easy, phased transition that has been transparent for employees.","og_url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/migrating-mobile-device-management-to-intune-in-the-azure-portal\/","og_site_name":"Inside Track Blog","article_published_time":"2018-05-25T19:41:23+00:00","article_modified_time":"2023-06-09T18:13:46+00:00","og_image":[{"width":1040,"height":585,"url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/05\/6455-hero.jpg","type":"image\/jpeg"}],"author":"Inside Track \u2013 retired stories","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Inside Track \u2013 retired stories","Est. reading time":"12 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/migrating-mobile-device-management-to-intune-in-the-azure-portal\/","url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/migrating-mobile-device-management-to-intune-in-the-azure-portal\/","name":"Migrating mobile device management to Intune in the Azure portal - Inside Track Blog","isPartOf":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/migrating-mobile-device-management-to-intune-in-the-azure-portal\/#primaryimage"},"image":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/migrating-mobile-device-management-to-intune-in-the-azure-portal\/#primaryimage"},"thumbnailUrl":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/05\/6455-hero.jpg","datePublished":"2018-05-25T19:41:23+00:00","dateModified":"2023-06-09T18:13:46+00:00","author":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/59e5f7b07dae629412c990cc1a63b575"},"description":"In a cloud-only future, our streamlined infrastructure will support modern management of personal and corporate devices on the Microsoft network. To progress toward this vision, we migrated our hybrid mobile device management (MDM) configuration to Microsoft Intune in the Azure portal because it offers greater scalability and ease of management. Our migration process and tools import data from Configuration Manager, providing an easy, phased transition that has been transparent for employees.","breadcrumb":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/migrating-mobile-device-management-to-intune-in-the-azure-portal\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.microsoft.com\/insidetrack\/blog\/migrating-mobile-device-management-to-intune-in-the-azure-portal\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/migrating-mobile-device-management-to-intune-in-the-azure-portal\/#primaryimage","url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/05\/6455-hero.jpg","contentUrl":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/05\/6455-hero.jpg","width":1040,"height":585,"caption":"Woman outside talking on cell phone."},{"@type":"BreadcrumbList","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/migrating-mobile-device-management-to-intune-in-the-azure-portal\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.microsoft.com\/insidetrack\/blog\/"},{"@type":"ListItem","position":2,"name":"Migrating mobile device management to Intune in the Azure portal"}]},{"@type":"WebSite","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#website","url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/","name":"Inside Track Blog","description":"How Microsoft does IT","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.microsoft.com\/insidetrack\/blog\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/59e5f7b07dae629412c990cc1a63b575","name":"Inside Track \u2013 retired stories","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/image\/ee0de87c339052d5d84852473bd7f213","url":"https:\/\/secure.gravatar.com\/avatar\/24a8c329ab32afd1bc23fd1658d1acc2?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/24a8c329ab32afd1bc23fd1658d1acc2?s=96&d=mm&r=g","caption":"Inside Track \u2013 retired stories"},"description":"The content on this page was crafted to highlight a specific moment in time or the solutions that have led us to where we are today. It offers valuable insights into our journey and the progress made over the years. Check out the Inside Track blog page for our up-to-date stories around Microsoft.","url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/author\/insidetrackarchive\/"}]}},"jetpack_featured_media_url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/05\/6455-hero.jpg","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p9hcZA-2L4","_links":{"self":[{"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/posts\/10606"}],"collection":[{"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/users\/146"}],"replies":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/comments?post=10606"}],"version-history":[{"count":5,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/posts\/10606\/revisions"}],"predecessor-version":[{"id":10616,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/posts\/10606\/revisions\/10616"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/media\/10610"}],"wp:attachment":[{"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/media?parent=10606"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/categories?post=10606"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/tags?post=10606"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/coauthors?post=10606"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}