Entra ID and Intune device clean up

Role

Solution Architect

Objective & Key Results

• Automated Device Compliance: Implemented automated workflows to ensure compliance with organizational security policies for all devices.

• Streamlined Onboarding: Reduced manual effort by automating device enrollment and compliance checks using Intune and Entra ID.

• Real-Time Monitoring: Enabled near real-time compliance reporting and alerts using Azure Automation and Graph API.

• Enhanced Security: Leveraged managed identities to securely authenticate and interact with Microsoft Graph API without hardcoding credentials.

• Cross-Platform Management: Successfully managed and enforced compliance policies for Android, iOS, Windows, and Linux devices.

Design

Project Overview

The project involved managing device compliance and policies for a diverse set of endpoints, including Android, iOS, Windows, and Linux devices. Using Intune and Entra ID, the goal was to enforce security and compliance policies, automate device onboarding, and monitor compliance status in real time. PowerShell runbooks were used to streamline management tasks, leveraging Graph API and managed identity for secure and scalable automation within Azure Automation Account.

Technologies Used

• Azure Automation Account: For creating and managing PowerShell runbooks.

• PowerShell: For writing scripts to interact with Intune and automate tasks.

• Microsoft Graph API: For querying and managing Intune and Entra ID resources programmatically.

• Azure Managed Identity: For secure, credential-free authentication to Azure services.

• Microsoft Intune: For device compliance management and policy enforcement.

• Entra ID (Azure Active Directory): For identity and access management.

• Android, iOS, Windows, Linux Devices: Platforms managed under the compliance framework.