Use scope tags to filter policies

Scope tags let you filter policies with custom tags that you create. You can apply scope tags to roles and apps.

When an admin creates a resource in Intune, any scope tags assigned to that admin will be automatically assigned to the new resource.

For example, create a scope tag called “Engineering Department” and assign it to configuration profiles related to the engineering department. Assign that same tag to an “Engineering Administrators” role. They'll only see the policies with the “Engineering Department” tag.

To create a scope tag

Choose Roles > Scope (tags) > Create.

To add a scope tag to a configuration profile

Choose Device configuration > Profiles > choose a profile > Properties > Scope (Tags).

To assign a scope tag to a role

Choose Roles > All roles > Policy and Profile Manager > Assignments > Scope (Tags).

To assign a scope tag to an app

Choose Client apps > Apps > choose an app > Properties > Scope (Tags) > Add > choose the tags > Select > OK > Save.

Next steps

Manage your roles and profiles.