基本設定Basic setup

完成環境評估之後,即可開始設定 Intune。After you assess your environment, it’s time to set up Intune.

Intune 部署的外部相依性External dependencies for an Intune deployment

權杖服務 (STS)Identity

Intune 需要 Azure Active Directory (AAD) 作為身分識別和使用者分組提供者。Intune requires Azure Active Directory (AAD) as the identity and user grouping provider. 深入了解:Learn more about:

如果貴組織已使用 Office 365,Intune 必須使用相同的 Azure Active Directory 環境。If your organization is already using Office 365, Intune must use the same Azure Active Directory environment.

PKI (選用)PKI (optional)

如果您打算在 Intune 針對 VPN、Wi-Fi 或電子郵件設定檔使用憑證式驗證,您必須確定您有支援的 PKI 基礎結構,隨時可建立及部署憑證設定檔。If you're planning to use certificate-based authentication for VPN, Wi-Fi, or e-mail profiles with Intune, you’ll need to make sure that you have a supported PKI infrastructure in place, ready to create and deploy certificate profiles. 深入了解如何在 Intune 中設定憑證:Learn more about configuring certificates in Intune:

Intune 設定的工作清單Task list for an Intune setup

工作 1:Intune 訂閱Task 1: Intune subscription

移轉至 Intune 之前,您必須先訂閱 Intune。Before you can migrate to Intune, you first need an Intune subscription.

  • 您可以瀏覽此頁面,其中包含下列作業的指示︰You can visit this page, which gives you instructions on how to:

    • 建立連結至新的 AAD 租用戶的全新 Intune 訂閱。Create a new Intune subscription linked to a new AAD tenant.

    • 登入現有的 AAD 租用戶以連結 Intune 訂閱。Link the Intune subscription by signing into an existing AAD tenant.

工作 2:指派 Intune 使用者授權Task 2: Assign Intune user licenses

工作 3:將 MDM 授權單位設定為 IntuneTask 3: Set your MDM authority to Intune

您可以透過 Azure 入口網站或 Configuration Manager 最新分支主控台來管理 Intune。Intune can be managed through the Azure portal or the Configuration Manager Current Branch console. 除非您需要整合 Intune 與 Configuration Manager 最新分支部署,否則,建議您從 Azure 入口網站管理 Intune。Unless you need to integrate Intune with a Configuration Manager Current Branch deployment, we recommend that you manage Intune from the Azure portal.

將 MDM 授權單位設定為 Intune以啟用 Intune Azure 入口網站。Set your MDM authority to Intune to enable the Intune Azure portal. 使用其他 MDM 授權單位可讓 Intune 將 MDM 管理移交至其他 Microsoft 管理主控台。Using a different MDM authority allows Intune to transfer MDM management to alternate Microsoft management consoles. 這種情況並不常見。These cases are uncommon.

重要

如果您是第一次將行動裝置管理移交至 Intune,應該將 MDM 授權單位設定為 Intune。If you are transferring your mobile device management to Intune for the first time, you should set the MDM authority to Intune.

了解如何設定行動裝置管理授權單位Learn how to set the mobile management authority.

後續步驟Next step

設定裝置與應用程式管理原則Configure device and app management policies.