Migration Guide Intune Hybrid to Intune Standalone Configuration Manager ConfigMgr SCCM. We had a serious discussion about the decision-making process between Intune hybrid and standalone.
In that post, we discussed 8 Reasons to Select Intune Standalone Over Hybrid. So in the nutshell, the decision was to go with Intune standalone instead of jumping into the slow train. In this post, we will see the migration guide from Intune hybrid SCCM to Intune standalone.
Read the Microsoft case study sharing best practices and lessons learned from Microsoft’s SCCM Intune hybrid to standalone migration.
- [Related Posts – 8 Reasons to Select Intune Standalone Over Hybrid]
Video – What are Intune Design Decisions
What are Intune Design Decisions | Why Intune Standalone Architecture? No Integration with SCCM?
So what is Next?
So SCCM Intune Co-Managed devices are the option that Microsoft is proposing to adopt for all the organization. The co-management will help organizations to move toward modern management
During the MVP Summit in Seattle, we had a great discussion with Shitanshu Verma and his team about their experience of migrating from Intune hybrid to Intune standalone.
I didn’t find any post from Shintanshu or his team on this topic. It would be great if he can have a post on Intune’s standalone migration topic.
NEW customers should select INTUNE STANDALONE as a preferred method
EXISTING customers should start PLANNING to MIGRATE to INTUNE STANDALONE
Microsoft wants existing customers to move to Intune’s standalone environment. Intune hybrid might die soon (this is my best guess). As I mentioned in the previous post, the existing Intune hybrid customers should start the planning of migration from Intune hybrid to Intune standalone.
Following are high level content covered in this Guide
- Convince Your Boss – Intune Standalone Decision
- Inventory – Identify Configurations, Users, and Devices to Migrate
- SCCM Prerequisite for Intune Standalone Migration
- Intune Standalone Migration Tool
- Prepare for Intune Standalone User Migration
- Phased User Migration – Intune Standalone
Convince Your Boss – Intune Standalone Decision
I discussed more than eight (8) reasons to go with Intune Standalone over Hybrid. I performed detail analysis of decision making process to go with Intune standalone. This step helps to find out executive sponsor for Intune standalone migration project.
Microsoft already provides detailed documentation of this decision making. Microsoft is committed to update the following documentation up to date. More details choose between Microsoft Intune standalone and hybrid with SCCM.
Convince Your Boss = YES
Inventory – Identify Configurations, Users and Devices to Migrate
Once you decided to migrate to Intune standalone then, this is the inventory phase for the migration from hybrid MDM (Intune integrated with SCCM) to a cloud experience using Intune on Azure.
The first phase is to perform an inventory on your existing Intune hybrid (SCCM) environment to understand the special configurations. This inventory task should be performed using Intune Data Importer tool. This will help you to understand the existing setup and plan your migration.
The next step of Intune standalone migration is to identify the infrastructure dependency on your on prem infrastructure. NDES servers could be one of the dependency for certificate deployment. You shall build NDES server before migrating from Intune hybrid to standalone.
Inventory = Collected?
SCCM Prerequisite for Intune Standalone Migration
SCCM 1610 or later is the minimum requirement for Intune standalone migration. Microsoft recommend that you specify the top-level site (CAS or standalone Primary) hierarchy. This is not specific requirement from SCCM or Intune perspective. But this is to provide support for Intune standalone migration tool.
Microsoft provide Intune standalone migration tool to migrate uses are devices from SCCM to Intune. The tool only discovers objects accessible by the user running the tool. Make sure the user who runs the prerequisite tool must have SCCM FULL admin rights on SCCM hierarchy and service admin rights on Intune.
SCCM 1610 and Later = Ready?
Intune Standalone Migration Tool
Download Intune Data Importer tool and run this from top tier SCCM server to collect the inventory details. The user with SCCM Full admin and Global admin must run the Data Importer tool the first time using the following intunedataimporter.exe -GlobalConsent parameter.
The Intune Data Importer tool collects data about the objects you select from your SCCM hierarchy. This provides details about the objects you can select for import and why some things cannot be imported and let you import selected objects into your Microsoft Intune tenant.
I don’t think all the objects from SCCM can be migrated to Intune with the tool. You need to have loads of manual work to complete the migration to Intune. Fix all the errors of Intune data importer tool. This tool will help to get the inventory:
- Configuration items
- Certificate profiles
- Email profiles
- VPN profiles
- Wi-Fi profiles
- Compliance policies
Intune Data Importer Tool = Downloaded and Ready to Run?
Prepare for Intune Standalone User Migration
Identify the pilot user(s) to perform pilot migration of Intune standalone. Make sure you complete the following steps before the pilot user migration.
- Get ready with Server infra – NDES, Exchange connector
- Communicate the change plan to all the stakeholders
- Start training support staff for Intune device management (Start Learning Intune)
- Fix all the errors of Intune import tool
- Fix Role Based Administration for Intune admins
- Get ready with Intune (Data Warehouse) reports to replace Intune reports
- Find out the Graph API details to automate the Intune workflow
All the preparation tasks are Completed = Yes?
Phased User Migration – Intune Standalone
Don’t change tenant level MDM authority to Intune until all the users are migrated. My recommendation is to perform phased user migration. Migrated users and their devices are managed in Intune.
When you use co-management Windows devices then, those Windows devices can be managed via Intune and SCCM.
You can configure a mixed MDM authority in the same tenant by selecting some users to be managed in Intune. Other users continue to be managed in SCCM.
You can gradually migrate additional groups of users until you are ready to switch the tenant-level MDM authority from SCCM to Intune standalone.
Tenant Level MDM Authority = Mixed Mode
- Import Configuration Manager data to Microsoft Intune
- Prepare Intune for user migration
- Change the MDM authority for specific users (mixed MDM authority)
- Change your MDM authority to Intune standalone
Anoop is Microsoft MVP! He is a Solution Architect in enterprise client management with more than 20 years of experience (calculation done in 2021) in IT. He is Blogger, Speaker, and Local User Group HTMD Community leader. His main focus is on Device Management technologies like SCCM 2012, Current Branch, and Intune. He writes about ConfigMgr, Windows 11, Windows 10, Azure AD, Microsoft Intune, Windows 365, AVD, etc……………
11 thoughts on “Migration Guide Intune Hybrid to Intune Standalone Configuration Manager ConfigMgr SCCM”
Is this migration guide stil valid in 2019 july?
I think, yes. The blog post is still valid for SCCM 1902 and 1906. Do you have any specific question Rahul ?
Hi Anoop, Do you have any article for customers that wants to move from Standalone SCCM to Standalone Intune? (Not for Hybrid SCCM or Co-management or Cloud attached MCEM etc)
Hello I don’t have any specific document for that scenario. But I don’t see any automated migration options.. it should be a side by side migration from SCcm to Intune … are you planning to rebuild the machines or use the existing machines
I think some of the machines will be rebuild as hardware needs to be replace and some might be existing machines.
What would be the best approach for migration from standalone sccm to standalone intune ?. What all things need to be taken care?
I think the best way to rebuild all the machine and move to azure ad joined scenario … but this would take more efforts … the other option is domain join and intune managed … this could be bit tricky sometimes
Ok Thanks.. Also whether Intune data importer tool will be of any help in any way for such type of movement that is standalone sccm to standalone intune.. Also what issues we might face for machine with domain join and intune managed..
Our environment use SCCM for App deployments. Now a small division is separated and formed a new company where the deployment tool is Intune. Is there any way we can use all the sccm packages directly in Intune? Any available tools to convert sccm packages to Intune compatible? If so is it a standard practice and could there be any challenges in future?
Hi, I’m not aware of any tools to do that at this point in time. There are some community tools available to convert the sccm applications to IntuneWin format. I have explained one of them https://www.anoopcnair.com/wvd-management-with-intune-windows-virtual-desktop/
I noticed the link to the tool is no longer working? Is this path still valid?
If not is there a plan to migrate from MECM to MEM support by MS?
Hi, I don’ think it’s still valid.