Govern and administer

Control access with role-based permissions, audit tenant activity, and manage data privacy and compliance for your Intune environment.

Recommended learning path

Get started

• 1. Understand RBAC in Intune
• 2. Learn the built-in roles
• 3. Assign roles to administrators
• 4. Scope access with tags
• 5. Audit tenant activity
• 6. Review privacy and data handling

Role-based access control

Overview

• Role-based access control (RBAC)

How-To Guide

• Use Multi Admin Approval
• Create a custom role
• Assign a role to an administrator
• Use RBAC and scope tags for distributed IT

Reference

• Built-in roles reference

Audit and tenant administration

Overview

• Tenant status and health

How-To Guide

• Audit changes and events
• Route logs to Azure Monitor
• Configure device cleanup rules

Privacy and data handling

Overview

• Privacy and personal data in Intune

Concept

• Data collection in Intune
• Data storage and processing
• Data security and sharing

How-To Guide

• Enable Windows diagnostic data
• Audit, export, or delete personal data