I'm trying to setup Intune, but getting errors before I can even get the connection. I enter the info, but get the error "Could not retrieve the access token for Microsoft Graph API. Check the configuration for Microsoft Intune Integration."
What do use use for the Azure AD tenet name? The ".onmicrosoft.com" subdomain?
YourAzureADName.onmicrosoft.com is what I used. Make sure you didn't go beyond I think 10 minutes since creating your key else it will also fail. I pretty much followed this https://docs.microsoft.com/en-us/intune/conditional-access-integrate-jamf#configure-conditional-access-in-jamf-pro to get it done. I had to wait a bit after I entered the key and appid before the test would work. How long, I'm not sure since I came back the next day.
I’m lucky enough to be our Intune and Jamf admin. MS’s docs are pretty bad, but I got it working. Your Azure AD tenant name can be found in Azure>Azure Active Directory>Property>Directory ID. It will be a string of numbers and letters, much like the App ID you created for Jamf Conditional Access. I don’t believe it should be any kind of URL, but rather just identifies your tenant by ID. I was also able to create a custom location to put the Company Portal app by packaging it with Composer (rather than in the Applications folder). This would prevent users from launching the app from the App folder (a no-no according to the docs, it needs to be launched through Self Service).
@Bendelaat It seemed to be a timing issue. Following the instructions to set everything up in Intune, it did work, but it seemed to take a little while for the account and keys to propagate. There wasn't actually a graph API to configure. So try giving it some time and trying again.
On a side note, I believe we are now running into product issue (PI-005258) where Conditional Access does not work in multi-context environments. Our JSS is setup as "https://jss.domain.com/jamf" instead of just "https://jss.domain.com".
Bumping this even though its been a few years.
I am getting this error, however both Intune and Graph have the proper permissions:
"Could not retrieve the access token for Microsoft Graph API. Check the configuration for Microsoft Intune Integration."
Since we are all cloud, highly doubt it's a port issue. Anyone else experience this?
Yea I reached out to support and they recommended Cloud Connector.. The documentation for the manual setup is definitely out dated as it asks for an API that is depreciated.
I haven't really looked at it since it was for POC, but checking now it still appears to be working. Is yours still down?