Before you can configure a web application, contact Microsoft to purchase a Microsoft Intune subscription.
BIG-IP APM integrates Microsoft
Intune by configuring a Microsoft Azure Client web application on the Microsoft Azure
portal. This topic describes how to create a web application to obtain a client ID and a
client secret.
-
On Microsoft Azure, on the main tab, click Azure Active Directory.
The Azure Active Directory screen opens.
-
Click App registrations.
The App registrations screen opens.
-
Click New application registration.
A new Create screen opens.
-
In the Name field, type a name for the new web application.
-
From the Application type dropdown menu, select Web app / API.
-
In the Sign-on URL field, type a URL.
This can be any URL, such as https://localhost.
-
Click Create.
A list of applications displays in the Register app screen.
-
Copy the Application ID to your records.
You use this ID as a client id when configuring EMS object on BIG-IP.
-
Click Settings.
The Settings screen opens.
-
Click Keys.
Use this option to create a secret key.
The Keys screen opens.
-
In the Description field, enter any description for this secret key.
-
From the Expires dropdown menu, select Never expires.
-
Click Save.
You should copy the key to the administrator records. You use this key as a client secret when configuring EMS object on a BIG-IP system.
A new key displays in the Keys screen.
-
In the Registered app screen, under Settings, click Required Permissions.
The Required permissions screen opens.
-
Click Add.
-
For the Select a API option, select Microsoft Intune API.
-
Click Select.
-
From the APPLICATION PERMISSIONS list, select Get device state and compliance information from Microsoft Intune.
-
Click Select and Done.
A list of added permissions displays.
-
Click Grant permissions.
-
Navigate back to the Azure Active Directory screen.
-
Click
The new web application displays in the list.
-
Click .
The Permissions screen opens the Microsoft Intune API with the permission, "Get device state and compliance information from Microsoft Intune."
You now have a tenant ID, client ID,
and client secret.
From your BIG-IP system, create an Endpoint Management System for Microsoft Intune.