Integrate with Microsoft Intune - Introduction

Kieran Anson
Kilo Patron

‎12-11-2021 04:49 PM - edited ‎07-20-2025 12:07 PM

    Next Article >
    Authenticating with Azure // Microsoft Graph API

Introduction

I was recently presented with the request to bring Microsoft Intune data into the CMDB, without leveraging Service Graph, and wanted to document my experience. In this series of articles, I’m going to cover the key milestones of bringing in data via the Microsoft Graph API into the NOW platform and hopefully provide you with some insights, tricks and gotchas I’ve discovered along the way.

This series is largely bourne out of the lack of existing documentation that provides an end to end guide to setting up such an integration. I do however want to say thank you to xostmoen’s article and Maverick Embry blog post that helped me with a starting point.

What is Microsoft Intune?

Intune is a cloud-based mobile device management (MDM) solution that allows organisations to control laptops, phones and tablets from a centralised console. As someone who’s largely been in organisations that have used SCCM the platform is comparable as an outsider (adding this caveat so the SCCM fans don’t come after me for such blasphemy) with the bonus of being much easier to integrate with thanks to the cloud-first, structured and framework data model.

What is Microsoft Graph?

Graph API is a single gateway into the world of data that resides within Microsoft 365. It removes the frustration of different endpoints, formats and data models that comes within integrating with on-prem solutions and adds a strict uniform model of requesting and manipulating data. It’s not perfect and the documentation from Microsoft could be better but it does simplify integrations; especially if your organisation has a number of MS365 services.

How will this integration work?

I’ve broken this down into its key areas. Each of these areas can be applied to other integrations either with MS Graph, or another API set. So hopefully this series provides you with some transferable skills and principal knowledge on integrations!

  1. Authenticating and authorisation with Microsoft Graph
  2. Retrieving data
    1. Pro-code script approach
    2. Low-code flow designer approach
  3. Transforming data into the CMDB using Integrationhub ETL
  4. Optional extras

Pre-requisites

To get started, the following plugins should be activated on your instance:

  1. OAuth 2.0 (com.snc.platform.security.oauth) - This is available by default on new and upgraded instances.
  2. Integration Commons for CMDB (sn_cmdb_int_util)
  3. IntegrationHub ETL (sn_int_studio)
  4. CMDB CI Class Models (sn_cmdb_ci_class)
  5. Datastream Action (com.glide.hub.action_type.datastream) - Only required if going for the low-code approach. Check with your ServiceNow rep as you may need to buy an upgraded IntegrationHub entitlement!

I'll be developing the integration within a scoped application. For admin delegation purposes, but the added benefit of having it all stored within an application rather than update sets. This makes it so much easier to maintain and somewhat reduces the need for cumbersome documentation that is instantly out of date.

  • 6,323 Views
Comments
Maik Skoddow
Tera Patron
Tera Patron
‎12-15-2021 12:00 AM

Awesome article series! 

I have a good idea of how many hours of work this must have done.

(I like the blue box style! Do you know additional types?)

Kieran Anson
Kilo Patron
‎12-15-2021 12:07 AM

Thanks Maik! 

The blue info prompt is actually part of the CSS I use in KB articles and to bring a bit of a Confluence feel to ServiceNow based knowledge articles. CSS below:

.note { 
  background-color: #e9f0ff; 
  border: 1px solid #b2c8f9; 
  border-left: 6px solid #286cff;
  padding:15px 15px;
}

I then just a CSS inliner as the community strips a style block but not inline styles 🙂 

0 Helpfuls
Maik Skoddow
Tera Patron
Tera Patron
‎12-15-2021 12:39 AM

Cool! 

I'm a Confluence expert and have been using it for over 13 years now! Therefore, I like such tips as the SN RTE is only a poor alternative.

Keep on documenting!

Maik

PerV
Kilo Sage
‎02-02-2023 11:06 PM

@Kieran Anson Not sure it's your task, but the links lead back to developer start page, not to the next part of the article series. It's same in every part, tried different browsers too.

Apart from that small issue, thank you for this extensive description of how to set up integration with Intune! Much appreciated.

 

//Per

0 Helpfuls
SeanM1
Tera Guru
‎03-18-2024 07:09 PM

@PerV if you're still looking the next article can be found here - Integrate with Microsoft Intune - Authorisation - ServiceNow Community

David77
Giga Guru
‎10-29-2024 06:12 AM

Maybe I missed it, but what was the business reason for not using the SCCM/MECM Service Graph Connector?

0 Helpfuls
Sangeeta Das
Tera Contributor
‎04-16-2025 12:47 PM

Is integration between MS Intune and ServiceNow is limited to unidirectional where data will only flow from Intune to ServiceNow? Or can it be configured bidirectional? 

 

#MS Intune, #Service Graph Connector #Integration, @Kieran Anson 

0 Helpfuls
Kieran Anson
Kilo Patron
‎04-17-2025 06:35 AM

@Sangeeta Das to feed data to MS Intune, you'd use the Intune spoke and IntegrationHub

faisalkazmi
Tera Contributor
‎04-18-2025 02:10 AM

This is an incredibly valuable walkthrough—thank you for sharing your experience! Integrating Microsoft Intune data into the CMDB without Service Graph is a challenge many teams face, and your breakdown offers exactly the kind of clarity that’s often missing in official docs. Looking forward to the upcoming parts of the series, especially around the ETL transformation and flow designer approach. If you ever need support with scoped app development or additional hands on integration work, our software company specializes in exactly this kind of custom solution—we’d be happy to collaborate.

0 Helpfuls
David77
Giga Guru
‎04-29-2025 10:52 AM

I just wish that one could make minor changes to the SG for Intune to include additional fields that are being collected by Intune, but not mapped over to NOW.  😞

0 Helpfuls
Kieran Anson
Kilo Patron
‎04-29-2025 11:00 AM

@David77 you generally can. As long as the data is available from the managed device graph API, you can tweak the service graph connector. 

 

It would be nicer if it was easier, but it's doable 

0 Helpfuls
prajjvalsingh90
Tera Contributor
‎05-16-2025 03:15 AM

If I want to check, what all fields/data are coming from Intune to Servicenow so is there any simple way to lookout in any table which can give me clear picture ? 

0 Helpfuls
David77
Giga Guru
‎05-21-2025 05:18 AM

 @prajjvalsingh90  If you install the free product "Service Graph Data Visualizer" it shows the field mappings. 

0 Helpfuls
David77
Giga Guru
‎05-21-2025 05:20 AM

Kieran, can you provide a link to a document or video that would get me started on how to modify the provided Intune Service Graph connector? Thanks. 

0 Helpfuls
SreerajCP
Tera Contributor
‎07-09-2025 12:00 AM

@Kieran Anson  Thanks for this! 

 

Can we use the microsoft intune spoke to get all the devices from intune may be using a custom action, rest steps etc?

0 Helpfuls
jgubarev
Tera Explorer
‎07-15-2025 11:27 AM

Kieran

 

Perfect articles, but unfortunately not all are accessible - some links do not work. Is it possible to restore the missing ones?

For instance, second article after Intro is not found.

0 Helpfuls
Kieran Anson
Kilo Patron
‎07-20-2025 12:04 PM

@SreerajCP the spoke isn't intended for that use case, more for managing and completing actions. The Service Graph Connector is the optimal method for retrieving device information

0 Helpfuls
Kieran Anson
Kilo Patron
‎07-20-2025 12:12 PM

@jgubarev thanks for flagging. I've updated the navigation links so you should now be able to navigate between articles

jgubarev
Tera Explorer
‎07-21-2025 05:07 AM

Thanks, @Kieran Anson . All good now 😊

0 Helpfuls
Version history
Last update:
‎07-20-2025 12:07 PM
Updated by:
Contributors