Intune App Manager

Settings

Configure application settings and Azure AD integration

Microsoft Azure AD Configuration

Configuration Location: These settings are configured via environment variables in your .env file. Changes require restarting the application.

Tenant ID

Client ID

Client Secret

Encryption Key

Required API Permissions

Your Azure AD App Registration requires the following Microsoft Graph API permissions:

DeviceManagementApps.ReadWrite.All
Read and write Microsoft Intune apps
Application.ReadWrite.All
Create, read, update and delete applications
Directory.Read.All
Read directory data

These should be configured as Application permissions with admin consent granted.

Database Configuration

Connection String

Database Password

Not configured (DB_PASSWORD)

AI Assistant Configuration

Enable AI Assistant

Use AI to generate application deployment settings

Setup Instructions

1. Create Azure AD App Registration

Go to Azure Portal → Azure Active Directory → App registrations
Create a new registration or select existing one
Copy the Tenant ID and Client ID

2. Configure API Permissions

Go to API permissions → Add a permission
Select Microsoft Graph → Application permissions
Add the three permissions listed above
Click Grant admin consent

3. Create Client Secret

Go to Certificates & secrets
Create a new client secret
Copy the secret value immediately (it won't be shown again)

4. Configure Environment Variables

Create or update .env file in the IntuneAppManager directory:

# Azure AD Configuration
AZURE_TENANT_ID=your_tenant_id
AZURE_CLIENT_ID=your_client_id
AZURE_CLIENT_SECRET=your_client_secret

# Database
DB_PASSWORD=your_secure_db_password

# Encryption (256-bit key)
MASTER_ENCRYPTION_KEY=your_256_bit_encryption_key

# AI Configuration (Optional)
AI__EnableAiAssistant=true
AI__PreferredProvider=gemini
AI__Gemini__ApiKey=your_gemini_api_key
AI__Gemini__Model=gemini-2.5-proption_key

5. Restart Application

docker-compose down
docker-compose up -d