Connect SOTI MobiControl to Microsoft Intune and Microsoft Intune Compliance Partner Configuration

About this task

In Microsoft Intune, configure SOTI MobiControl as the third-party compliance partner.

Method 1: Automatic Set up (Connect SOTI MobiControl to Microsoft Intune)

Before you begin

For SOTI MobiControl 2024.1.0 and later, successfully completing this method's procedure will automate the process of adding compliance partner manager into Microsoft Intune as described in Method 2.

About this task

Connect SOTI MobiControl to Intune to report device compliance status.

Note: You must be a Global Administrator to manage Microsoft integration configurations.

If you make any changes to the Azure portal, select Sync in Global Settings to synchronize all updates with SOTI MobiControl and set Account Status to Active.

Conditional Access screen in Global Settings with Sync button highlighted

Procedure

  1. From the SOTI MobiControl main menu, select Global Settings > Services > Microsoft 365.
  2. Select Add Credentials to create an Azure tenant connection.
  3. Enter a name and Microsoft Entra tenant ID. To find your Microsoft Entra tenant ID, go to Azure AD portal and navigate to Menu > Active Directory.
  4. Select Consent on behalf of your organization and select Accept.
  5. Select Accept. The Microsoft Sign In panel displays.
    Review requested permissions
  6. Select an account, then select Accept. A success message displays when Microsoft 365 connects.
  7. Navigate to the SOTI MobiControl web console and select Sync. SOTI MobiControl is automatically populated over the Microsoft Intune third-party compliance partner management portal. A success message displays.
    Note: If you navigate back to the compliance partner page in the Intune admin center and select Refresh, the Partner status displays as Active.
    Attention: After a successful sync on Microsoft Intune (previously known as Microsoft Endpoint Manager), other third-party compliance partnersare not be overwritten by SOTI MobiControl. If you want to enable SOTI MobiControl as the compliance partner you must first manually remove the existing third-party compliance partners from Microsoft Intune Admin center.
    For example, the following scenarios could occur:
    1. Assume at least one platform (for example, Android) is populated by a third party compliance partner other than SOTI MobiControl, and assume there are other empty platforms (for example, macOS and iOS). When you select SYNC, those other empty platforms will be populated by SOTI MobiControl but the Android platform will be left with the third party compliance partner.

    2. If all platforms are populated by third-party compliance partners, selecting SYNC will fail because SOTI MobiControl compliance partner is not added for any platform.

Method 2: Manual Microsoft Intune Compliance Partner Configuration

Before you begin

If there are issues with the automatic setup as described in Method 1, you can try the following:

Procedure

  1. Open the Microsoft Intune admin center.
  2. Select Tenant administration > Connectors and tokens > Partner compliance management.
  3. Select Add compliance partner.
  4. From the Compliance partner list, select SOTI MobiControl.
  5. Select a platform (for example, Android).
  6. Add groups or users.
  7. Review the compliance partner details and select OK.
    Note: The Partner status displays as Terminated until you create a connection from SOTI MobiControl to the Microsoft Entra tenant. See the status table below.
    Status Description
    Terminated/Pending activation/Connection Lost SOTI MobiControl is not connected.
    Active SOTI MobiControl is connected.
  8. Reattempt/attempt SOTI MobiControl integration with Microsoft 365 Conditional Access using Method 1: Automatic Set up (Connect SOTI MobiControl to Microsoft Intune)

What to do next

Create a Device-Based Conditional Access Policy.