Setup TechSafe Solve for Intune Azure

Before you begin, please contact your assigned TechSafe technician so that the integration can be successfully completed.

Creating the App in your Azure Tenancy

1. Open https://portal.azure.com

2. Select Azure Active Directory

3. In the Manage list, select App Registrations, then New Registration.

              a. Name the application “TechSafe Solve for Intune”.

              b. Select “Accounts in this organizational directory only <your domain name>.

              c. Select register.

Configuring redirect URL for TechSafe Solve

4. From the Overview page of the app, select “Add a Redirect URL”

              a. Select “Add a Platform” and select “Web” from the web application options presented.

              b. Enter https://portal.techsafe.nz as the first URL.

              c. Select Add URL and add https://is.techsafe.nz/commonauth

              d. Select configure.

The image below displays what the configurations should look like after completing this step.

Adding API Permissions to TechSafe Solve

5. Select API Permissions

             a. Microsoft Graph (1) -> User.Read permissions should be listed.

             b. Select Add permission followed by Microsoft Graph

             c. Select Application permissions and add all permissions listed below:


Permission Group 

Type 

Required Permissions 

AuditLog 

Application 

AuditLog.ReadAll 

Device 

Application 

Device.Read.All 

DeviceManagementApp 

Application 

DeviceManagementApp.Read.All 

DeviceManagementConfiguration 

Application 

DeviceManagementConfiguration.Read.All 

DeviceManagementManagedDevices 

Application 

DeviceManagementManagedDevices.PrivilegedOperations.All 

Application 

DeviceManagementManagedDevices.Read.All 

DeviceManagementServiceConfig 

Application 

DeviceManagementServiceConfig.Read.All 

Policy 

Application 

Policy.Read.All 

User 

Application 

User.Read.All 

             d. Select “Grant admin consent for <your domain>” and yes to the pop-up confirmation.

             e. The permission status should have no updated to a green tick “Granted for <your domain>”

After completing this step it should look like the image below.

Adding Certificates & Secrets

6. Select Certificates & Secrets

             a. Select “New Client Secret”

             b. Enter “TechSafe Solve for Intune” as the description

             c. Select required expiry period

                                i. Note: New codes must be provided when the existing one expires.

             d. ** Copy the secret value and keep it safe BEFORE navigating from this screen. TechSafe requires this value, which is hidden once the page is closed. A new secret will need to be created if not captured when it’s created.


After completing this step it should look like the image below.

7. Return to the overview page.

Last step

6. Provide the following IDs to the TechSafe Team to complete the configuration.

             a. Application (Client) ID

             b. Directory (tenant) ID

             c. The Secret value recorded at step 6d. 

             d. The expiry date of the secret value.