Skip to Content
DevicesSetup Wizard

Setup Wizard

The Setup Wizard guides you through initial configuration of device management for a Microsoft 365 tenant. Complete each step to enable Intune enrollment, compliance policies, and endpoint security.

Prerequisites

  • Microsoft Intune licenses assigned to users
  • Global Administrator or Intune Administrator role
  • Tenant connected in the MSP Portal
  • MDM Authority set to Intune

Wizard Steps

Step 1 — Connect Tenant

Authorize MedhaOps access to the customer Microsoft 365 tenant using delegated admin privileges or application consent.

Step 2 — Configure Enrollment

  • Windows — Enable Autopilot, configure automatic MDM enrollment via Azure AD
  • macOS — Connect Apple Business Manager, configure DEP enrollment
  • iOS/iPadOS — Configure Apple Push Notification certificate, set up ADE
  • Android — Link Managed Google Play, choose Android Enterprise enrollment type

Step 3 — Define Compliance Policies

  • Minimum OS version requirements
  • Password complexity and length
  • Encryption enabled (BitLocker / FileVault)
  • Jailbreak / root detection for mobile
  • Defender threat level thresholds

Step 4 — Set Up Security Baselines

  • Windows Security Baseline
  • Microsoft Defender for Endpoint baseline
  • Microsoft Edge security baseline
  • Microsoft 365 Apps baseline

Step 5 — Configure Conditional Access

  • Require device compliance for Microsoft 365 access
  • Block non-compliant devices from corporate resources
  • Allow grace period for remediation before blocking

Step 6 — Deploy Applications

  • Microsoft 365 Apps (Office suite)
  • Company Portal app
  • Line-of-business applications
  • Security agents (if required)

Step 7 — Review and Apply

Review all configured settings before applying to the tenant. The wizard shows a summary of enrollment settings per platform, compliance policies created, security baselines assigned, and applications queued for deployment.

Post-Setup

After completing the wizard:

  • Monitor the Dashboard for enrollment progress
  • Review compliance status as devices begin checking in
  • Verify security baselines are applying correctly
  • Check application installation status

API Reference

  • GET /api/device-management-intune/setup/status — Get setup wizard progress
  • POST /api/device-management-intune/setup/initialize — Start setup for a tenant
  • POST /api/device-management-intune/setup/complete — Mark setup as complete
Last updated on
Web ProtectionBulk Operations