The ultimate MEM tour part 5 – User and Groups

In the previous blogs we have looked at all the features Intune offers for device management, application management, endpoint security and reporting. Now we will look at the User and Groups menu. This blog will be the last blog in this series.

More blogs from this series:

Users

Here you can find an integration of the Users menu from Azure AD. So you can manage the Azure Ad users here without changing the portal.

All users

Overview of all users and the possibility to edit them. You can also create new users here.

Deleted users

List of all users deleted from the Azure Ad in the last 30 days. You can restore users or delete them permanently.

Password reset

In this menu you can activate the Self-Service Password reset for all users or for selected groups only. You will also find numerous configurations here. For example, whether the password should be written back to the on premise AD or how many factors are required for a reset.

User settings

Here you can find basic user setting. You can configure if users are allowed to register apps, if they are allowed to access the Azure AD admin portal and if the work or school account can be linked with linked in. In addition, you can configure Enterprise applications, adjust the external collaboration settings and configure feature settings in the menu.

Diagnose and solve problems

Here you can find an overview of common problems and get help with troubleshooting.

Sign-in logs

A reporting of the sign in history can be found in this section. So you can see here which account has signed in when and where.

Audit logs

Here you can find audit logs when attributes of a user were changed and what was changed.

Bulk operation results

In this option you will find the bulk lists to download. You can start the provision of these lists within a user in the groups menu.

New support request

In this section, tickets can be opened in case of problems in order to get support from the Microsoft support team.

Groups

Just like the user menu, the group menu is also an integration of Azure AD. Also for this menu I explain all the features.

All groups

Overview of all groups and the possibility to edit them. You can also create new groups here.

Deleted groups

List of all groups deleted from the Azure Ad in the last 30 days. You can restore groups or delete them permanently.

Diagnose and solve problems

Here you can find an overview of common problems and get help with troubleshooting.

General

Here you will find general settings like allowing group owners to manage groups or you can grant read only access for all users.

Expiration

Here you can specify that the group will be expired after a certain time. Before the time expires and the group is deleted, an email goes out to the owner of the group with the possibility to extend the group.

Naming policy

To have a uniform naming of the groups you can configure a prefix and suffix here, which must be set before newly created group. You can also maintain a blacklist of words that are not allowed to appear in the group name.

Access reviews

This function can be used to ensure that users keep the group memberships that are important or that these are withdrawn in the event of a team change. So you have a way to keep track of your groups and their memberships.

Audit logs

Here you can find audit logs when attributes of a group were changed and what was changed.

Bulk operation results

In this option you will find the bulk lists to download. You can start the provision of these lists within a group in the Members menu.

New support request

In this section, tickets can be opened in case of problems in order to get support from the Microsoft support team.


This was the last blog of the series and also the shortest. I hope I could give you some insights into the user and group management of Intune. Thanks for reading this and the other blog posts in my series. I wish you a nice weekend.

Stay healthy, Cheers
Jannik

4 thoughts on “The ultimate MEM tour part 5 – User and Groups

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s