为什么我不能在 Intune 上创建托管设备?
Why can't I create a managed device on Intune?
我正在尝试在 Intune 中创建托管设备,但出现了不同的错误。
这是我正在使用的文档 https://developer.microsoft.com/en-us/graph/docs/api-reference/v1.0/api/intune_devices_manageddevice_create。
我正在使用 Graph Explorer 测试功能,因此我不需要授权令牌,我登录的帐户是全局管理员并且启用了适当的委派权限 'DeviceManagementManagedDevices.ReadWrite.All'。
当我尝试第一个请求时 /users/{usersId}/managedDevices 我得到了 403
An error has occurred - Operation ID (for customer support): 00000000-0000-0000-0000-000000000000。
如果我尝试 /deviceManagement/managedDevices 我会得到 400
No OData route exists that match template
如果有任何不同,我已注册 Intune 和 Azure AD 的免费试用。
我可能遗漏了什么?
请求正文基于创建托管设备文档中的示例。我也尝试删除 odata 类型,但没有任何区别。
一个我试过的例子
{
"id": "5h5b3fab-0169-45de-9aad-3d928ebbe1a0",
"userId": null,
"deviceName": "newIntuneDev",
"deviceActionResults": [],
"enrolledDateTime": "2018-02-19T11:04:24.242385Z",
"lastSyncDateTime": "2018-01-03T14:01:45.1553437Z",
"operatingSystem": "Android",
"complianceState": "compliant",
"jailBroken": "false",
"managementAgent": "mdm",
"osVersion": "7.0",
"easActivated": true,
"easDeviceId": "DFC17B28459230B3",
"easActivationDateTime": "2018-01-19T11:05:11.4483412Z",
"azureADRegistered": true,
"deviceEnrollmentType": "userEnrollment",
"activationLockBypassCode": null,
"emailAddress": null,
"azureADDeviceId": "89f65205-72af-4830-a9b1-ebcd3160476f",
"deviceRegistrationState": "registered",
"deviceCategoryDisplayName": null,
"isSupervised": false,
"exchangeLastSuccessfulSyncDateTime": "0001-01-01T00:00:00Z",
"exchangeAccessState": "none",
"exchangeAccessStateReason": "none",
"remoteAssistanceSessionUrl": "",
"remoteAssistanceSessionErrorDetails": "",
"isEncrypted": false,
"userPrincipalName": null,
"model": "SM-G930F",
"manufacturer": "samsung",
"imei": "539467078998547",
"complianceGracePeriodExpirationDateTime": "9999-12-31T23:59:59.9999999Z",
"serialNumber": "T58H52RP9KN",
"phoneNumber": null,
"androidSecurityPatchLevel": "2018-01-01",
"userDisplayName": null,
"configurationManagerClientEnabledFeatures": {
"inventory": false,
"modernApps": false,
"resourceAccess": false,
"deviceConfiguration": false,
"compliancePolicy": false,
"windowsUpdateForBusiness": false
},
"wiFiMacAddress": "4C6641183631",
"deviceHealthAttestationState": null,
"subscriberCarrier": "",
"meid": "659467078998547",
"totalStorageSpaceInBytes": 0,
"freeStorageSpaceInBytes": 0,
"managedDeviceName": "newDevice",
"partnerReportedThreatState": "unknown"
}
这 (https://developer.microsoft.com/en-us/graph/docs/api-reference/v1.0/api/intune_devices_manageddevice_create) 是文档错误。 API 不支持创建托管设备。您需要将 MDM 设备注册到 Intune 中才能查看在 ~/managedDevices API 下填充的数据。
- 注册免费的 Intune 试用订阅
- 设置 MDM 权限 - https://docs.microsoft.com/en-us/intune/mdm-authority-set
- 注册设备 -
https://www.microsoft.com/itshowcase/Article/Video/634/Enroll-your-mobile-device-in-Microsoft-Intune-for-corporate-access
- 成功注册后,设备应显示在 ~/managedDevices 下
谢谢,
Alemeshet Alemu - MSFT
我正在尝试在 Intune 中创建托管设备,但出现了不同的错误。
这是我正在使用的文档 https://developer.microsoft.com/en-us/graph/docs/api-reference/v1.0/api/intune_devices_manageddevice_create。
我正在使用 Graph Explorer 测试功能,因此我不需要授权令牌,我登录的帐户是全局管理员并且启用了适当的委派权限 'DeviceManagementManagedDevices.ReadWrite.All'。
当我尝试第一个请求时 /users/{usersId}/managedDevices 我得到了 403
An error has occurred - Operation ID (for customer support): 00000000-0000-0000-0000-000000000000。
如果我尝试 /deviceManagement/managedDevices 我会得到 400
No OData route exists that match template
如果有任何不同,我已注册 Intune 和 Azure AD 的免费试用。
我可能遗漏了什么?
请求正文基于创建托管设备文档中的示例。我也尝试删除 odata 类型,但没有任何区别。
一个我试过的例子
{
"id": "5h5b3fab-0169-45de-9aad-3d928ebbe1a0",
"userId": null,
"deviceName": "newIntuneDev",
"deviceActionResults": [],
"enrolledDateTime": "2018-02-19T11:04:24.242385Z",
"lastSyncDateTime": "2018-01-03T14:01:45.1553437Z",
"operatingSystem": "Android",
"complianceState": "compliant",
"jailBroken": "false",
"managementAgent": "mdm",
"osVersion": "7.0",
"easActivated": true,
"easDeviceId": "DFC17B28459230B3",
"easActivationDateTime": "2018-01-19T11:05:11.4483412Z",
"azureADRegistered": true,
"deviceEnrollmentType": "userEnrollment",
"activationLockBypassCode": null,
"emailAddress": null,
"azureADDeviceId": "89f65205-72af-4830-a9b1-ebcd3160476f",
"deviceRegistrationState": "registered",
"deviceCategoryDisplayName": null,
"isSupervised": false,
"exchangeLastSuccessfulSyncDateTime": "0001-01-01T00:00:00Z",
"exchangeAccessState": "none",
"exchangeAccessStateReason": "none",
"remoteAssistanceSessionUrl": "",
"remoteAssistanceSessionErrorDetails": "",
"isEncrypted": false,
"userPrincipalName": null,
"model": "SM-G930F",
"manufacturer": "samsung",
"imei": "539467078998547",
"complianceGracePeriodExpirationDateTime": "9999-12-31T23:59:59.9999999Z",
"serialNumber": "T58H52RP9KN",
"phoneNumber": null,
"androidSecurityPatchLevel": "2018-01-01",
"userDisplayName": null,
"configurationManagerClientEnabledFeatures": {
"inventory": false,
"modernApps": false,
"resourceAccess": false,
"deviceConfiguration": false,
"compliancePolicy": false,
"windowsUpdateForBusiness": false
},
"wiFiMacAddress": "4C6641183631",
"deviceHealthAttestationState": null,
"subscriberCarrier": "",
"meid": "659467078998547",
"totalStorageSpaceInBytes": 0,
"freeStorageSpaceInBytes": 0,
"managedDeviceName": "newDevice",
"partnerReportedThreatState": "unknown"
}
这 (https://developer.microsoft.com/en-us/graph/docs/api-reference/v1.0/api/intune_devices_manageddevice_create) 是文档错误。 API 不支持创建托管设备。您需要将 MDM 设备注册到 Intune 中才能查看在 ~/managedDevices API 下填充的数据。
- 注册免费的 Intune 试用订阅
- 设置 MDM 权限 - https://docs.microsoft.com/en-us/intune/mdm-authority-set
- 注册设备 - https://www.microsoft.com/itshowcase/Article/Video/634/Enroll-your-mobile-device-in-Microsoft-Intune-for-corporate-access
- 成功注册后,设备应显示在 ~/managedDevices 下
谢谢, Alemeshet Alemu - MSFT