Intune – what permissions allow for a device to be registered?
Does anyone know, what permissions are required for devices to register with Intune?
All of our IT admins have separate admin/elevated accounts. They always need to logon to a newly imaged workstation to ensure everything is as expected but this activity often causes the device to register to Intune under their username. Ideally we do not want admin accounts to cause registration to Intune, this should only happen when the intended user logs on for the first time.
If the device registers against an IT admin it’s occasionally hard to do reporting or find a specific device.
Hoping someone can help me pinpoint how I can remove admin accounts from having permissions to register devices in Intune.