Edit

Connect your Intune account to your Managed Google Play account

  • Article

To support the following Android enrollment types, you must connect your Intune tenant account to your Managed Google Play account:

Refer to the following support article from Google to ensure that Android Enterprise is available in your country or region: https://support.google.com/work/android/answer/6270910

Intune makes it easier for you to configure and use Android Enterprise management. After you connect your account to Google Play, these common apps for Android Enterprise are added to the admin center:

Note

Due to interaction between Google and Microsoft domains, this step may require that you adjust your browser settings. Make sure that "portal.azure.com" and "play.google.com" are in the same security zone in your browser.

  1. If you haven't already, sign in to the Microsoft Intune admin center and set the mobile device management authority to Microsoft Intune.

  2. Go to Devices > Android.

  3. Select Android enrollment > Managed Google Play. If you are using a custom Intune admin role, access to this option requires Organization Read and Update permissions.

    Android enterprise enrollment screen

  4. Select I agree to grant Microsoft permission to send user and device information to Google.

  5. Select Launch Google to connect now to open the Managed Google Play website. The website opens on a new tab in your browser.

  6. On the Google sign-in page, enter the Google account you want to associate with all Android Enterprise management tasks for this tenant. This Google account will be the one that your company's IT admins share to manage and publish apps in the Google Play console. You can use an existing Google account or create a new one. The account you choose must not be associated with a G-Suite domain.

    Important

    Be sure to use or create an Enterprise account rather than a personal GMail account. Keep in mind that the account you use should be one that is easily shared or transferred in the case that the person setting up the Managed Google Play connection leaves the company or moves teams.

    Note

    If you're using the Microsoft Edge browser, make sure to Sign-In to the browser with your Google account.

  7. Enter the following details:

    • Organization name: Your company name.
    • Enterprise mobility management (EMM) provider: Verify that Microsoft Intune is shown.

  8. Agree to the Android agreement, and then select Confirm.

    Note

    Choose a scope tag for your Managed Google Play apps. Under this section, you can select a scope tag that will apply to all newly-approved Managed Google Play apps. You must have the following permissions to interact with this section:

    • Android Sync - Read
    • Android Sync – UpdateOnBoarding

    Admins without these permissions will not be able to remove the scope tag selected on the pane. Tenant admins, or admins who are in charge of giving admin permissions to others, can update permissions in Microsoft Intune admin center > Tenant Administration > Roles.

    Important

    Only link 1 Intune account to a managed Google Play account. Linking multiple accounts is unsupported and prevents basic functionality from working as expected.

Disconnect your Android Enterprise administrative account

You can turn off Android Enterprise enrollment and management by following these steps:

  1. Sign in to the Microsoft Intune admin center with your Intune administrator account.
  2. Retire all of the following devices:
    • Android Enterprise personally-owned work profile devices
    • Android Enterprise corporate-owned work profile devices
    • Android Enterprise fully managed
    • Android Enterprise dedicated devices
  3. Go to Devices > Android.
  4. Select Android enrollment > Managed Google Play > Disconnect.
  5. Choose Yes to disconnect and unenroll all Android enterprise devices from Intune.

Next steps

After you connect to the Managed Google Play account, you can set up Microsoft Intune for these Android Enterprise scenarios: