Connection to MECM

~~Zur~~A ~~Anbindung~~service ~~von~~account ~~MECM-Standorten~~is ~~wird~~required ~~ein~~to ~~Service-Account~~connect ~~benötigt.~~
MECM sites.

~~Die~~
The ~~Ausführung~~web ~~der~~application ~~Web-Applikation~~is ~~erfolgt~~executed imin ~~Kontext~~the ~~des~~context ~~Service-Account~~of the service account (see ~~siehe~~ IIS ~~Konfiguration~~configuration) ~~und~~and ~~der~~the ~~Service-Account~~service ~~wird~~account ~~auch~~is ~~zur~~also ~~Anbindung~~used ~~der~~to ~~MECM-Standorte~~connect ~~verwendet.~~the MECM sites.

BerechtigungenPermissions

~~Für die Arbeit mit dem Intune Manager wird keine~~No Configuration Manager ~~Konsole~~console ~~benötigt.~~is required to work with Intune Manager.

~~Autorisierung~~Authorization ~~und~~and ~~Ausführung~~execution ~~aller~~of ~~Aktionen~~all ~~erfolgen~~actions ~~über~~are ~~den~~done via the SMS_Provider ~~des~~of ~~jeweiligen~~the ~~MECM-Standortes.~~respective MECM site.

~~Mit dem~~With Intune ~~Manager~~Manager, ~~ist~~it ~~möglich,~~is ~~vorhandene~~possible ~~MECM-Applikationen~~to ~~auszulesen~~read ~~und~~existing inMECM ~~Intune~~applications zuand ~~importieren.~~import ~~Hierfür~~them ~~werden~~into ~~folgende~~Intune. The following administrative ~~Berechtigungen~~permissions ~~innerhalb von~~within MECM ~~werden~~are ~~benötigt:~~required for this:

~~Applikation~~Application: ~~Lesen~~Read
~~Sammlung~~Collection: ~~Lesen;~~read; ~~Ressource~~read ~~lesen;~~resource;
Site: ~~Lesen~~Read

~~Die~~The ~~Bereitstellung~~easiest ~~dieser~~way ~~Rechte~~to ~~erfolgt~~provide amthese ~~einfachsten~~rights ~~durch~~is ~~den~~to ~~Import~~import ~~einer~~a ~~Sicherheitsrolle~~security ~~innerhalb~~role ~~der~~within the Configuration Manager ~~Konsole:~~console:

~~Für~~The ~~den~~following ~~Import~~XML ~~dieser~~file ~~Sicherheitsrolle~~can ~~kann~~be ~~dazu~~used ~~folgende~~to ~~XML-Datei~~import ~~verwendet~~this ~~werden:~~security role:

<SMS_Roles>
  <SMS_Role CopiedFromID="SMS0001R" RoleName="Intune Manager" RoleDescription="Intune Manager Role">
    <Operations>
      <Operation GrantedOperations="4097" ObjectTypeID="1" />
      <Operation GrantedOperations="1" ObjectTypeID="6" />
      <Operation GrantedOperations="1" ObjectTypeID="31" />
    </Operations>
  </SMS_Role>
</SMS_Roles>

~~Anschließend~~Then ~~wird~~the ~~der~~Service ~~Service-Account~~account ~~den~~is ~~administrativen~~added ~~Benutzern~~to ~~hinzugefügt~~the ~~und~~administrative ~~ihm~~Users ~~die~~and ~~zuvor~~assigned ~~erstellte~~the ~~Sicherheitsrolle~~previously ~~zugeteilt.~~create security role.

ImIn ~~Arbeitsbereich~~the ~~Administravie~~Administrative ~~Users~~User's ~~kann~~Workspace, ~~der~~the ~~administrativen~~Administrative ~~Benutzer~~User ~~angelgt~~can ~~werden.~~be added.

ImOpen ~~Kontext-Menü~~the Add User or Group context ~~öffnen.~~menu.

~~Mit~~Use Browse ~~den~~to ~~Service-~~select the Service Account ~~auswählen~~to ~~der~~be ~~Berechtigt werden soll.~~authorized.

In ~~diesem~~this ~~Beispiel~~example, ~~wurde der~~the System-Account ~~des~~of the Server ~~auf~~on ~~dem der~~Which Intune Manager ~~installiert~~is ~~ist~~installed ~~verwendet.~~was used.

~~Nachdem~~After ~~der~~the Account ~~ausgewählt~~has ~~wurde~~been ~~kann~~selected, ~~mit~~the authorization can be selected with ~~Add~~ Add.~~die Berechtigung ausgewählt werden.~~

~~Hier~~Here, ~~muss~~the ~~die~~Previously ~~zuvor~~created ~~erstelle Rolle~~role Intune Manager must ~~ausgewählt~~be ~~werden.~~selected.

~~Abschließend~~Finally, ~~muss~~the ~~der Punkt~~item All instances of the objects that are related to the assigned security roles ~~ausgewählt~~must ~~werden.~~be selected.

~~Dann~~Then ~~kann~~the ~~der~~Administrative ~~administrative~~User ~~Benutzer~~can ~~mit~~be Created with OKOK. ~~erstellt werden.~~

~~Die Anbindung von~~ Configuration Manager ~~Sites~~sites ~~erfolgt~~are ~~über~~connected ~~die~~via ~~Datei~~the appsettings.json. File.