I am working on permissions for Intune. I wanted to use the built in roles for admins to do their work. I've given all permissions I think are necessary however I am having an issue with admins not having the ability to assign policies.
In this case the admin can create a Windows autopilot deployment profile but can not assign the profile to a group.
The error is :
You don't have enough permissions to assign this profile to one or more of your selected groups.
As mentioned the admin can login and create the autopilot profile. They just get an error when assigning it.



