How to Assign Intune Administrator Role to a User

From Notes_Wiki

Home > Microsoft Intune > How to Assign Intune Administrator Role to a User


How to Assign Intune Administrator Role to a User

Description

To delegate Intune management tasks, you can assign the “Intune Administrator” role to a user. This role allows the user to access and manage Intune via the Microsoft Endpoint Manager admin center.

Purpose

By assigning this role, organizations can give specific users permission to manage devices, policies, apps, and compliance settings in Intune—without giving them full global admin rights.

Steps

A. Using Microsoft Entra ID (Azure AD)

  1. Go to Microsoft Entra Admin Center.
  2. In the left menu, click Users > All users.
  3. Select the user to whom you want to assign the role.
  4. Click on Assigned roles > + Add assignments.
  5. In the search box, type Intune Administrator and select it.
  6. Click Next > Assign.

B. Using Microsoft 365 Admin Center

  1. Go to Microsoft 365 Admin Center.
  2. Go to Users > Active users.
  3. Click on the user’s name.
  4. In the user settings panel, click Manage roles.
  5. Scroll to the bottom, click Show all by category, then select:
    1. Intune Administrator under the "Device management" category.
  6. Click Save changes.

Role Capabilities

The "Intune Administrator" role allows the user to:

  • Access the Microsoft Endpoint Manager admin center.
  • Create and manage device compliance policies.
  • Deploy and manage apps.
  • Monitor enrolled devices.
  • Create and assign configuration profiles.
  • Manage conditional access (with additional permissions).

Real-world Example

A junior IT staff member is assigned the "Intune Administrator" role to help manage company laptops, push security updates, and review compliance reports, without giving them access to other Office 365 admin functions.

Notes

  • Only a Global Administrator can assign roles.
  • You can remove the role at any time from the same screen.
  • Use Entra ID for more advanced role customization (e.g., PIM – Privileged Identity Management).


Home > Microsoft Intune > How to Assign Intune Administrator Role to a User

Retrieved from "http://www.sbarjatiya.com/notes_wiki/index.php?title=How_to_Assign_Intune_Administrator_Role_to_a_User&oldid=9232"