Microsoft Intune 的中国终结点China endpoints for Microsoft Intune

此页列出了 Intune 部署中代理设置所需的中国终结点。This page lists the China endpoints needed for proxy settings in your Intune deployments.

若要管理防火墙和代理服务器后面的设备,必须启用 Intune 的通信。To manage devices behind firewalls and proxy servers, you must enable communication for Intune.

  • 由于 Intune 客户端使用 HTTP (80)HTTPS (443) ,因此代理服务器必须支持这两种协议The proxy server must support both HTTP (80) and HTTPS (443) because Intune clients use both protocols
  • 对于某些任务(例如下载软件更新),Intune 需要对 的未经身份验证的代理服务器访问权限For some tasks (like downloading software updates), Intune requires unauthenticated proxy server access to

可以修改单个客户端计算机上的代理服务器设置。You can modify proxy server settings on individual client computers. 还可以使用“组策略”设置来更改位于指定代理服务器后面的所有客户端计算机的设置。You can also use Group Policy settings to change settings for all client computers located behind a specified proxy server.

托管的设备需要允许“所有用户”通过防火墙访问服务的配置。Managed devices require configurations that let All Users access services through firewalls.

有关适用于中国客户的 Windows 10 自动注册和设备注册的详细信息,请参阅设置 Windows 设备的注册For more information about Windows 10 auto-enrollment and device registration for China customers, see Set up enrollment for Windows devices.

下表列出了 Intune 客户端访问的端口和服务:The following tables list the ports and services that the Intune client accesses:

终结点Endpoint IP 地址IP address

中国 Intune 客户指定的终结点Intune customer designated endpoints in China

  • Azure 门户: portal:
  • Microsoft 365: 365:
  • Intune 公司门户: Company Portal:
  • Microsoft Endpoint Manager 管理中心: Endpoint Manager admin center:

合作伙伴服务终结点Partner service endpoints

由世纪互联运营的 Intune 依赖于以下合作伙伴服务终结点:Intune operated by 21Vianet depends on the following partner service endpoints:

  • Azure AD Sync 服务: AD Sync service:
  • Evo STS: STS:
  • Azure AD Graph:https://graph.chinacloudapi.usAzure AD Graph:
  • MS Graph:https://microsoftgraph.chinacloudapi.cnMS Graph:
  • ADRS:https://enterpriseregistration.partner.microsoftonline.cnADRS:

Windows 推送通知服务Windows Push Notification Services

在使用移动设备管理 (MDM) 管理的 Intune 托管设备上,设备操作和其他即时活动需要使用 Windows 推送通知服务 (WNS)。On Intune-managed devices managed by using Mobile Device Management (MDM), Windows Push Notification Services (WNS) is required for device actions and other immediate activities. 有关详细信息,请参阅支持 WNS 流量的企业防火墙和代理配置For more information, see Enterprise Firewall and Proxy Configurations to Support WNS Traffic

Apple 设备网络信息Apple device network information

用途Used for 主机名(IP 地址/子网)Hostname (IP address/subnet) 协议Protocol 端口Port
检索并显示 Apple 服务器的内容Retrieving and displaying content from Apple servers
与 APNS 服务器通信Communication with APNS servers
“#”是 0 到 50 范围内的一个随机数字。'#' is a random number from 0 to 50.
TCPTCP 5223 和 4435223 and 443
各种功能,包括访问 Internet、iTunes 商店、macOS 应用商店、iCloud、消息等。Various functions including accessing the internet, iTunes store, macOS app store, iCloud, messaging, etc.
HTTP/HTTPSHTTP/HTTPS 80 或 44380 or 443

有关详情,请参阅:For more information, see:

后续步骤Next steps

了解有关 Intune 由世纪互联在中国运营的详细信息Learn more about Intune operated by 21Vianet in China