Latest Intune Admin Portal Walkthrough Guide | MEM Admin Center

Intune Admin Portal is one of the first things you have to learn. From this post, you understand what is where in Intune admin portal (aka Endpoint Manager). The official name of the Intune admin portal in MEM Admin Center.

Intune had gone through several portal migrations in the last decade. Intune admin portal journey started with the Silverlight portal. The performance, look and feel of Intune admin portal are improved much with this journey to the MEM Admin center portal.

You can also refer to the Top 50 Latest Intune Interview Questions and Answers and if you are interested check out the Top 50 Latest SCCM Interview Questions and Answers.

Intune is ready-to-use SaaS (Software-As-A-Service) solution for device management from Microsoft. Almost all the features can be configured and managed using the Intune Admin portal. There are scenarios where you want to use Graph API to configure settings.

Patch My PC

Read More -> 63 Episodes of Free Intune Training Endpoint Manager for Device Management Admins

Microsoft Intune is an Enterprise Mobility Management (UEM) solution from Microsoft. Microsoft MEM Intune helps manage all flavors of devices (Windows, iOS, Android, and macOS). This solution helps to deliver network settings and other device management settings.

What is the Microsoft Endpoint Manager admin center?

Microsoft Endpoint Manager gives you easy access to the cloud’s device and client app management capabilities. It enables secure productivity across all device types, including Windows, iOS, macOS, and Android. In Microsoft Endpoint Manager, you can:

  • Enroll and configure your devices
  • Upload and distribute your apps
  • Protect your organization’s data
  • Cloud-enable computers enrolled with Configuration Manager
  • Monitor and troubleshoot your deployments

Video on MEM Admin Center Walkthrough is given below to get the latest updates:

What is the Microsoft Endpoint Manager admin center?

History of Intune Admin Portal

Let’s check the history of Intune Admin Portal. It all started with Silverlight console/portal. It was not easy to access this portal because of Silverlight components. This SilverLight portal was the first Intune admin portal.

  • https://manage.microsoft.com
Intune Admin Portal Walkthrough 1
Intune Admin Portal Walkthrough 1

After a few years, Microsoft migrated from the Silverlight portal to Azure Portal with Intune workflow integrated into the Azure portal. This was a bit messy migration because Intune SilverLight portal had independent groups to target apps and policies.

  • https://portal.azure.com
Intune Admin Portal Walkthrough 2
Intune Admin Portal Walkthrough 2

There was a moment when we thought everything was settled now, and this is the new Intune admin portal home. But Microsoft proved us wrong. For good, the admin portal is changed again and separated away from Azure Portal.

  • https://devicemanagement.microsoft.com/
Intune Admin Portal Walkthrough 3
Intune Admin Portal Walkthrough 3

The Device management portal was the first version of the current portal and was built on the same architecture principles and components in the backend. But this device management portal was also short-lived. Microsoft changed the URL again to align with the products and services name.

  • https://endpoint.microsoft.com

This portal is home to Intune Admins, and it’s called Microsoft Endpoint Manager Admin Center (MEM Admin Center).

Intune Admin Portal Walkthrough 4
Intune Admin Portal Walkthrough 4

MEM Admin Center (Endpoint Manager Intune) Portal

In this section, let’s check the MEM (Endpoint Manager) Admin Center Portal. This section of the post gives you a very high-level overview of Intune Admin portal. In the later sections, you get an end-to-end walkthrough experience of Intune admin portal.

You can run this MEM admin center portal from any of the browsers. It works with Windows, Android, macOS, iPad OS, and iOS devices. This is the first-class web portal for device management. You can also manage some of the workflows of SCCM from the MEM admin center portal.

The supported SCCM workflows for SCCM client devices are aligned with the helpdesk use case. You need to enable SCCM Tenant Attach feature to take advantage of the MEM admin center portal for SCCM client device management.

The MEM Admin center portal is also home to Windows 365 and Security admins. Security and Windows 365 Cloud PC workflows are part of the MEM Admin center (Intune Admin) portal. The following three (3) are the admin center portal’s additional workflows.

  • Azure AD Users and Groups
  • Endpoint Security
  • Windows 365
Intune Admin Portal Walkthrough 5
Intune Admin Portal Walkthrough 5

Login to Intune Admin/MEM Admin Center Portal

It’s time to log in to the Intune Admin/MEM Admin Center Portal with your Azure AD credentials. You can either use Azure AD accounts or Hybrid accounts (AD user accounts synced to Azure AD using AAD Connect).

You need to have appropriate permissions such as Intune admin to login to Intune Admin/MEM Admin Center Portal. You don’t have to assign Intune licenses for admin users as per the latest updates from Microsoft. More details -> Allow Unlicensed Admin to Access Intune Portal.

  • Open https://endpoint.microsoft.com/ portal from any browser.
  • Enter the User Name and click on the Next button. Enter the password to log in.

NOTE! – Depending on the Intune RBAC permissions and scope tags, the admin’s portal experience would be different.

Intune Admin Portal Walkthrough 6
Intune Admin Portal Walkthrough 6

HOME Page of Intune Admin Portal

Let’s check the information you can get on the HOME Page of Intune Admin Portal. This is the landing page for Intune or MEM admins.

Intune is tightly integrated with the Azure AD tenant, and hence it shows you the Default Directory details (AAD directory details) on the HOME page itself. I don’t know why is this AAD Default Directory information very important for Intune admins if you are part of an internal IT organization.

The following are the other main sections available on the HOME page of MEM Admin Center. There is an additional tab to check Microsoft Managed Desktop (MMD) workflows.

  • Status -> Status of the Intune environment.
  • News -> Promotional materials/Marketing blog articles from Microsoft.
  • Guided Scenarios -> Simplest method to create policies, etc., using predefined templates.
  • What is happening in Intune -> New features and other useful articles?

The left pane of the Intune Admin portal follows the same standard as Azure portals. You would be able to see all the Intune workflow items in the left pane of the portal.

Intune Admin Portal Walkthrough 7
Intune Admin Portal Walkthrough 7

MEM Admin Center Dashboard

Let’s see what MEM Admin Center Dashboard is and how you can customize it. How many of you know you can customize the admin center Dashboard as per your preferences. Your Dashboard is a private one for you.

Intune Admin Portal Walkthrough 8
Intune Admin Portal Walkthrough 8

You can customize the Dashboard from this page and share your Dashboard with other admins in this subscription. There are rich customization options available within the Admin Center portal.

The custom options for creating MEM Admin center dashboard are the same as Azure Dashboard. Intune and Azure are using the same framework. You can Drag and Drop or select tile and click “Add.” You can add other parts of the portal to the dashboard by pinning it.

Intune Admin Portal Walkthrough 9
Intune Admin Portal Walkthrough 9

You can have more than one Dashboard for Intune admin portal. You can select the custom dashboard from the drop-down menu options. I have added the HTMD Forum Support link to the Dashboard to show you the amount of customization that you can do.

Intune Admin Portal Walkthrough 10
Intune Admin Portal Walkthrough 10

All Services | Other Consoles

The next menu item on the left pane is All Services | Other Consoles. I have never used this node or menu item. I don’t think many Intune admins are going to use this. The Search All option available on this screen is not a global search but the search for this particular page.

The following are the other shortcuts menu items available on the All Services | Other Consoles page:

  • GENERAL
    • Devices
    • Apps
    • Desktop Analytics
    • Endpoint security
    • Reports
    • Users
    • Groups
    • Tenant administration
    • Troubleshooting + support

The other consoles option is useful if you have Intune for Education and Enterprise subscriptions. The AAD portal short is available here, but most of the AAD functionalities such as groups and users are available in the MEM Admin center or Intune portal itself.

  • OTHER CONSOLES
    • Intune for Education
    • M365 Azure Active Directory
Intune Admin Portal Walkthrough 11
Intune Admin Portal Walkthrough 11

Devices Blade MEM Admin Center | Intune Admin Portal

Let’s see the details of Devices Blade MEM Admin Center | Intune Admin Portal. The device is one of the most used nodes or blades in my experience. This Devices blade gives you an overall view of Intune device management.

This part of Device blade gives you an overview, including Intune enrolled devices, Enrollment alerts, Compliance Status, Configuration Status, Software Update Status, etc.

The All Devices node is one important node I use a lot, and this is the node/blade where you can see all the Intune managed and SCCM managed (if tenant attach is enabled) devices. You can get into Intune remote actions etc. are managed from this blade.

  • Devices | Overview
  • Search (Ctrl+/)
    • Overview
    • All devices
    • Monitor
Devices Blade MEM Admin Center | Intune Admin Portal
Devices Blade MEM Admin Center | Intune Admin Portal

As shown in the screenshot, you can segregate the device and workflow view based on the platform. If you are responsible for managing Windows devices, select the Windows platform. This helps to concentrate only on Windows-related workflows in Intune Admin portal.

  • By platform
    • Windows
    • iOS/iPadOS
    • macOS
    • Android
Intune Admin Portal Walkthrough 12
Intune Admin Portal Walkthrough 12

Device Enrollment

The Device enrollment is where you get all the Windows Autopilot, Enrollment Status Page, and Co-Management Settings options. Learn about the seven different ways a Windows 10/11 PC can be enrolled into Intune by users or admins.

  • Device enrollment
    • Enroll devices

The following are the menu options from the Device Enrollment blade under the DEVICES node in Intune admin portal.

  • Automatic Enrollment – Configure Windows devices to enroll when joining or registering with Azure Active Directory.
  • Windows Hello for Business – Replace passwords with strong two-factor authentication.
  • CNAME Validation – Test company domain CNAME registration for Windows enrollment.
  • Enrollment Status Page – Show app and profile installation statuses to users during device setup.
  • Co-management Settings – Configure co-management settings for Configuration Manager integration​
  • Manage Windows Autopilot devices.
  • Intune Connector for Active Directory
  • Configure hybrid Azure AD joined devices

This section also contains the following non-Windows and generic enrollment policy configuration options. This is why Intune is a platform that can manage all kinds of devices with many options/configurations.

Intune Admin Portal Walkthrough 13
Intune Admin Portal Walkthrough 13

Windows 365 Cloud PC

Windows 365 helps you quickly provision dedicated, highly available Cloud PCs for your organization. You can upload custom Windows images or use an optimized Windows 365 image to let people in your organization use their Cloud PC from anywhere, on any device.

Windows 365 Cloud PC is the home for all Windows 365 admins. This is the place in the MEM admin center Windows 365 admins create provisioning policies for Cloud PC and assign them to Azure AD groups.

This is where the on-prem network connection settings are configured for Cloud PC scenarios. You need to have a valid Windows 365 Cloud PC license to use this section.

Intune Admin Portal Walkthrough 14
Intune Admin Portal Walkthrough 14

Intune Policy Configuration

Intune Policy Configuration blade is very important for policy management of Windows, Android, iOS, macOS, and Linux platforms. As you can see in the below list, different types of policies are available to manage different workloads.

You can manage the security, device restriction, and Settings Catalog policies from this node. You have an option to manage the export and import of Group Policy from this section of Intune admin portal.

Intune Admin Portal Walkthrough 15
Intune Admin Portal Walkthrough 15

Intune Filters, Device clean-up, and device categories configurations are available in this part of the Intune admin (MEM Admin Center) portal.

Apps Workload for Intune Admins

All the Intune Apps-related workloads are part of this APPS blade in the MEM Admin center. I don’t know why the following text is there on the home page for APPs Microsoft Endpoint Manager recommends managing Microsoft 365 Apps with Current Channel.

You can create, deploy, and upgrade applications from this blade. Similar to Devices blade, Apps blase supports platform-based filtering of workflows.

There are different types of application creation and deployment options for Windows, iOS, Android, macOS, and Linux (coming soon) platforms. Intune Win32 application deployment is the most powerful deployment option in Intune. This is similar to the SCCM application model.

  • Apps | Overview
    • Search (Ctrl+/)
    • Overview
    • All apps
    • Monitor
  • By platform
    • Windows
    • iOS/iPadOS
    • macOS
    • Android
    • Linux (coming soon)?
  • Policy
    • App protection policies
    • App configuration policies
    • iOS app provisioning profiles
    • S mode supplemental policies
    • Policies for Office apps
    • Policy sets
  • Other
    • App selective wipe
    • App categories
    • E-books
    • Filters
  • Help and support
Intune Admin Portal Walkthrough 16
Intune Admin Portal Walkthrough 16

Endpoint Security MEM Admin Center

You can protect and secure Windows and other platform devices in one place from the MEM Admin Center (Intune) portal. You can Enable, configure, and deploy Microsoft Defender for Endpoint to help prevent security breaches and gain visibility into your organization’s security posture.

The following are some of the highlights available in the Endpoint security node of the MEM Admin center.

  • Microsoft recommended security settings – Assign baselines quickly and securely using our recommended settings.
  • Simplified security policies – Select any of the following categories to jump right in and start securing your devices.
  • Antivirus
  • Disk encryption
  • Firewall
  • Attack surface reduction
  • Endpoint detection and response
  • Account protection
  • Remediate endpoint weaknesses – Remediate endpoint vulnerabilities reported by Microsoft Defender for Endpoint and Threat and Vulnerability Management.
  • Microsoft Defender for Endpoint

The Endpoint security | Overview and Search (Ctrl+/) are common workflows available across all the blades on the MEM admin center. The following are the main workflows available under the Endpoint security node.

  • Overview
  • Manage
    • Antivirus
    • Disk encryption
    • Firewall
    • Endpoint detection and response
    • Attack surface reduction
    • Account protection
    • Device compliance
    • Conditional access
  • Setup
    • Microsoft Defender ATP
  • Help and support
Intune Admin Portal Walkthrough 17
Intune Admin Portal Walkthrough 17

Intune Reports Node – MEM Admin Center

Let’s check the Intune Reports node available in the MEM Admin Center. This is where you can refer to the different types of reports available in Intune.

You can monitor the health and activity of your endpoints from the reports node. Use Intune reporting to monitor endpoint compliance, health, and trends in your organization.

Read More -> List of Intune Default Reports Reporting Strategies Advanced Reporting Options

  • Organizational reports – Generate a summary report of your endpoints’ latest overall state and apply filters to refine your data.
  • Trends reports – Create a report from historical data to help you identify patterns and trends over time.
  • Advanced reports – Create custom queries and visualizations from raw data with the help of Log Analytics and Azure monitor workbooks.

The following are the different types of default reports available in the MEM Admin center for Intune admins to assess the health of the environment.

Intune Admin Portal Walkthrough 18
Intune Admin Portal Walkthrough 18

Azure AD Users Node – MEM Admin Center

Let’s check the Azure AD users node from MEM Admin center/Intune admin portal. This is where you can check the user properties before deploying applications or policies.

The Azure AD Users node in the MEM portal helps to provide a better experience with Intune/MEM admins. This helps to avoid jumping between the portals. You need additional permission (Intune admin permissions give only the basic rights in AAD) to check all the following nodes in Azure AD.

  • Users | All users –> anoopcnairo(Default Directory) – Azure Active Directory
    • All users (Preview)
    • Deleted users
    • Password reset
    • User settings
    • Diagnose and solve problems
  • Activity
    • Sign-ins
    • Audit logs
    • Bulk operation results
  • Troubleshooting + Support
    • New support request
Intune Admin Portal Walkthrough 19
Intune Admin Portal Walkthrough 19

AAD Groups Node in MEM Admin Center Portal

Let’s check the options available under the AAD Groups blade in MEM Admin Center Portal. This is also a shortcut to Azure AD groups. The Intune admins normally have permission to create Azure Dynamic Device/user groups.

The following options are available for a Global Admin role on the Azure AD groups node in the MEM Admin center portal. Additional permissions are required for some specific nodes, such as Audit logs and Access reviews.

  • Groups | All groups –> HTMD (Default Directory) – Azure Active Directory
    • All groups
    • Deleted groups
    • Diagnose and solve problems
  • Settings
    • General
    • Expiration
    • Naming policy
  • Activity
    • Access reviews
    • Audit logs
    • Bulk operation results
  • Troubleshooting + Support
    • New support request
Intune Admin Portal Walkthrough 20
Intune Admin Portal Walkthrough 20

Tenant Administration – MEM Admin Center

Let’s see the configuration and connections that we have in Tenant Administration – MEM Admin Center. I think this is one of the blades in the MEM Admin center that continuously adds new features.

Tenant administration is where Intune or MEM admins perform all the integration work such as NDES connection, Microsoft Tunnel Gateway, Microsoft Store for Business, Remote Help, etc.

Moreover, this is where Intune RBAC permissions are defined with scope tags, etc. You can also define end-user experience with custom notifications, etc., on this node.

  • Tenant admin | Tenant status
  • Search (Ctrl+/)
    • Tenant status
    • Remote Help
    • Microsoft Tunnel Gateway
    • Connectors and tokens
    • Filters
    • Roles
    • Azure AD Privileged Identity Management
    • Diagnostics settings
    • Audit logs
    • Device Diagnostics
    • Premium add-ons
  • End-user experiences
    • Customization
    • Custom notifications
    • Terms and conditions
  • Microsoft Managed Desktop
    • Tenant enrollment
  • Help and support
    • Help and support
Intune Admin Portal Walkthrough 21
Intune Admin Portal Walkthrough 21

Troubleshooting + Support | MEM Admin Center

Let’s find out the Troubleshooting + Support | MEM Admin Center blade details. This blade is the HOME page for all User-based troubleshooting. I think this is useful for helpdesk admin to assess the issues with a glance.

Read More -> How To Start Troubleshooting Intune Issues | Fix Intune Issues With Easy Steps

  • Troubleshooting + support | Troubleshoot
  • Search (Ctrl+/)
    • Guided scenarios (preview)
    • Troubleshoot
    • Help and support
Intune Admin Portal Walkthrough 22
Intune Admin Portal Walkthrough 22

Author

Anoop C Nair is Microsoft MVP! He is a Device Management Admin with more than 20 years of experience (calculation done in 2021) in IT. He is Blogger, Speaker, and Local User Group HTMD Community leader. His main focus is on Device Management technologies like SCCM 2012, Current Branch, and Intune. He writes about ConfigMgr, Windows 11, Windows 10, Azure AD, Microsoft Intune, Windows 365, AVD, etc.

Leave a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.