Login

INTUNE MIGRATION GUIDE

Content

  1. Introduction
  2. Migration Challenges
  3. Benefits
  4. Features
  5. Security
  6. What is migrated
  7. Prerequisites
  8. Migration process
  9. Troubleshooting
  10. FAQ

1.Migrate Intune between tenants : Introduction

Migrating from one Microsoft 365 tenant to another can be a complex endeavor, especially when it involves the migration of Intune policies – the backbone of managing and securing devices within your organization and the reconfiguration of your laptops and cloud computers.

Whether you are merging, splitting organizations, undergoing a restructuring, or seeking to optimize your Microsoft 365 environment, a comprehensive Intune policy migration is essential to maintain security, compliance, and productivity.

This guide is designed to provide you with clear, step-by-step instructions on how to migrate Intune policies and devices from the source tenant to the destination tenant. It covers various scenarios, including device configuration policies, compliance policies, app deployment policies, and laptop reconfiguration. By following this guide, you’ll be equipped to successfully navigate the migration process while minimizing disruptions and preserving user experiences.

Migrating Intune policies can present several challenges that organizations need to address to ensure a successful transition. Some common migration challenges associated with Intune migration include:

Policy Complexity and Diversity: Organizations often have a diverse range of Intune policies, including device configurations, compliance policies, app deployment policies, and more. Migrating these policies while maintaining their complexity and diversity can be challenging, as policies may need to be translated or adapted to fit the target environment.

Policy Dependencies: Intune policies can have dependencies on other policies, applications, or settings. Ensuring that these dependencies are preserved or adjusted appropriately during migration is crucial to avoid disruptions.

User Impact and Adoption: Migrating policies can sometimes impact end-users, causing changes in device behavior, settings, or application availability. Communicating these changes effectively to users and providing guidance can help minimize confusion and ensure smooth adoption.

Testing and Validation: Thoroughly testing migrated policies is essential to ensure they work as intended in the new environment. Challenges arise when policies interact with various device types, operating systems, and user scenarios.

Custom Configurations: Organizations often have custom configurations within Intune policies tailored to their specific needs. Ensuring that these customizations are accurately replicated during migration requires attention to detail.

Security and Compliance: Maintaining security and compliance during migration is critical. Ensuring that migrated policies align with regulatory requirements and security standards can be challenging, especially if there are variations in security practices between tenants.

Conditional Access and Identity Management: Migrated Intune policies might have conditional access rules that interact with identity management solutions. Coordinating these interactions between source and destination environments can be complex.

Laptop Migration Challenges

Laptop migration poses several challenges that organizations must navigate to ensure a seamless transition:

Azure AD Registration: Microsoft does not have builtin mechanisms to transfer a device from one Azure AD to another.

Office License Migration: Microsoft does not provide transparent and simple solutions for transferring and reactivating Office licenses on laptops during the migration from one tenant to another.

OneDrive Synchronization: OneDrive Synchronization agent cannot be automatically reconfigured to synchronize with the destination tenant once the user and laptop is migrated.

The solution offers numerous benefits that can significantly enhance the efficiency and success of your Intune migration process:

  1. Comprehensive Migration: The Cloudiway Intune Migration platform ensures a comprehensive migration experience by addressing various migration challenges, including policy replication, laptop reconfiguration, and data synchronization.

  2. Effortless Discovery: The discovery process efficiently identifies all existing Intune configuration settings and policies, streamlining the migration planning phase.

  3. Policy Replication: The platform seamlessly recreates configuration settings and policies at the target, saving valuable time and effort by eliminating the need for manual reconfiguration.

  4. Automated Assignments: Assignments are automatically mapped to their corresponding groups, reducing the risk of errors and simplifying the migration process.

  5. Smooth Laptop Reconfiguration: Azure AD joined and registered computers are smoothly disjoined from the source tenant, enabling hassle-free integration into the target environment.

  6. Office License Management: Office licenses are uninstalled and automatically reassigned upon login to the target tenant, ensuring a seamless transition for end users.

  7. OneDrive Synchronization: OneDrive reconfiguration ensures that data synchronization is maintained during migration, minimizing data loss or disruption.

  8. Flexible Scheduling: The scheduling feature empowers you to choose the most suitable time for laptop migrations, optimizing resource utilization and minimizing user impact.

  9. Reduced Downtime: By automating complex tasks and minimizing manual intervention, the solution reduces downtime during the migration process.

  10. User Experience: With smoother transitions and minimal disruptions, end users experience enhanced satisfaction and productivity during and after the migration.

  11. Technical Expertise: Leverage the platform’s technical capabilities without requiring an in-depth understanding of intricate migration processes.

  12. Cost-Effectiveness: By streamlining processes and reducing manual efforts, the solution optimizes resource allocation, resulting in cost savings.

  13. Minimized Complexity: The platform simplifies the complexity of Intune migration, enabling your IT team to focus on strategic initiatives rather than intricate technical tasks.

  14. Proven Solution: Cloudiway’s track record of successful migrations and their expertise in the field instills confidence in the effectiveness of the solution.

Migrate Intune Settings Features:

Feature

 

Details

 

Discovery

The discovery process identifies all existing Intune configuration settings and policies.

Migration of Configuration Settings and Policies:

Configuration settings and policies are seamlessly replicated at the target location. Assignments are automatically recreated and aligned with corresponding groups.

Laptop Reconfiguration

  • Azure AD joined and registered computers are disassociated from the source tenant, allowing end users to connect them to the target tenant.

  • Office licenses are uninstalled, enabling end users to log in to the target tenant and automatically assign the appropriate licenses to Office applications.

  • OneDrive Reconfiguration: Synchronization with the source is disengaged. After the end user logs in to the target environment, the OneDrive synchronization agent initiates synchronization with the new target.

Scheduler

Determine the optimal timing for executing the laptop migration.

Delta Passes

The platform supports delta passes, which means that whenever you restart the migration , only new or modified settings since the last pass will be migrated to eliminate duplicated content.

Dashboard

The Cloudiway dashboard allows the administrator of the migration to monitor their migration and have oversight of the progress of the migration.

SAAS instance/dedicated instance hosted by Cloudiway or on the customer side

Cloudiway migration is a SAAS platform.

For security reasons, you may not want to have your data shared or mixed with other customer data. To address this, Cloudiway offers 3 ways of working:

  • On the SAAS platform, each project data is stored in a dedicated SQL instance and each migration is run in separate processes.

  • If this data segmentation is insufficient, you can ask to migrate from a dedicated instance.

  • The migration platform can also be installed in your Azure data center.

APIs

Migration can be fully automated through the use of the Cloudiway rest APIs.

We take your privacy and security seriously at Cloudiway, and have invested significant effort into securing our platform and your data. 

Cloudiway infrastructure is fully hosted in Microsoft Azure, and leverages Azure Security certifications. We work closely with Microsoft and are fully involved in large migrations managed by Microsoft. As such, Cloudiway passed the Microsoft SSPA (Supplier Security & Privacy Assurance Program) certification ( Supplier Security & Privacy Assurance  ) .

 

More information about Cloudiway security is available here: About Cloudiway Security  

6.1 Devices

  1. Device | Clean-up rules
  2. Device | Compliance Policies
    • Policies (all platform Android, Linux, iOS, Windows, macOS)
    • Notifications
    • Scripts
  3. Devices | Conditional access policies
    • Policies
    • Named Location
    • Term Of Use
  4. Devices | Scripts
    • Devices | Update rings for Windows 10 and later 
    • Devices | Feature updates for Windows 10 and later
    • Devices | Quality updates for Windows 10 and later
    • Devices | Update policies for iOS/iPadOS
    • Devices | Update policies for macOS
    • Devices | Enrollment device limit restrictions
    • Devices | Enrollment device platform restrictions
    • Devices | Policy sets
    • Devices | Device categories
    • Devices | Filter

6.2 EndPoint Security 

  1. Endpoint security | Antivirus
  2. Endpoint security | Disk encryption
  3. Endpoint security | Firewall
  4. Endpoint security | Endpoint Privilege Management
  5. Endpoint security | Endpoint detection and response
  6. Endpoint security | Attack surface reduction
  7. Endpoint security | Account protection

6.3 Applications

  1. Apps | All Apps
  2. Apps | App categories
  3. eBooks | eBook categories
  4. Apps | App protection policies
  5. Apps | App configuration policies
  6. Apps | iOS app provisioning profiles

Before you being your migration, there are several key steps that need to be completed first. Make sure that you follow these steps in order, or there may be obstacles when running the migration itself.

Source Prerequisites

An Azure Active Directory application needs to be installed on the Microsoft 365 tenant.  Administrator credentials are required for this setup.Target Prerequisites

Target Prerequisites

An Azure Active Directory application needs to be installed on the Microsoft 365 tenant.  Administrator credentials are required for this setup.

Cloudiway Prerequisites

Intune Migration requires 2 kind of Cloudiway licenses:

  • Licenses for migrating Intune

  • Licenses for migrating User Laptops

Please reachout Cloudiway Sales to request for pricing and quote.

8. Migrate Intune Settings: Migration Process

The migration is a five step process. 

  1. Create the connectors for connecting to the source and the target .

  2. Run a Discovery to discover the Intune policies and settings.

  3. Select what to migrate.

  4. Create your mapping table to map source and target accounts and groups

  5. Run the migration.

To facilitate the migration, the Cloudiway platform needs to be able to communicate with both your source and target domains. To do this, Cloudiway uses connectors. You will need to set up a connector for each source tenant and each target tenant.

Microsoft connector

To configure your Microsoft 365 connector, proceed with the steps in the following article : Microsoft 365 connector configuration.

In the menu, under Cross Tenant Migration, open Intune.

Then click on Discover.

Intune Migration Settings

In the popup, select your connector, then Click Ok. This will schedule the discovery job.

Intune migration discovery

Once the discovery is completed, you can see the result and select the policies to migrate.

By default, everything is selected. You can modify the selection and click on SAVE SELECTION.

Only these policies will be migrated.

Intune migration discovery

Assignment are groups and users assigned to a policy.

A mapping needs to be established between the source and target groups.

To help you in this task, Cloudiway uses a mapping table to link source and target groups.

Furthermore, after the discovery, it helps you find and report the broken links (assigned groups that are not found at the target).

For this, switch to the flat view, and click on ASSIGNMENTS.

Intune Assignments
Intune Assignment Group

Any group that does not exist in the mapping table is reported.

To fix the missing assignment group, you can do it in 2 ways, manually using your own process or through the Cloudiway platform.

Using the Cloudiway paltform:

  • Navigate to the Mapping Group tab, run a Get Mapping et select the option to automatically Provision the missing entries.
Using your manual process
  • Create the missing group entry manually from your Microsoft 365 tenant, then navigate to the Mapping Group tab and rediscover the entries without selecting the option to autoprovision.

When you are ready to migrate, click on MIGRATE.

Migrate Intune

Select the source and target connector and click OK.

This will schedule the migration job.

You can monitor and see the migration logs under Migration Logs.

Intune Migration Progress

Cloudiway provides an extensive knowledge base with many resources, including common error messages, video guides, and downloads.

Please visit the knowledgebase here: 

9.1 Support

Support tickets are opened through the platform.

Once logged in, go to your project and select Help, then Support. The chatbot will ask you a couple of questions and then open a support ticket. You will receive an email response to your ticket, and you can continue the support by email.

More information regarding our support program is available here: 

How many migration licenses will I need?

You need a global Cross-Tenant migration license. It is a yearly subscription

Please contact sales to get a complete quote.

cloudiway white
Cloudiway provides innovative solutions
for efficient data migration and enterprise coexistence. A smart ally to master each transition to the cloud and ensure productivity and high business performance.
 

Follow Us

Facebook-f Twitter Youtube Linkedin-in

Quick Links

CLOUDIWAY DEVELOPS A SAAS PLATFORM THAT ALLOWS INFORMATION TECHNOLOGY BUSINESSES TO MIGRATE MAILBOXES, FILES, DRIVES, GROUPS, TEAMS, CONVERSATIONS, AND MORE BETWEEN DIFFERENT TENANTS AND COLLABORATION TOOLS.
ISO 27001
Mail Migration
IMAP Migration
Google Migration
Exchange Migration
Lotus notes Migration
Zimbra Migration
Enterprise Coexistence
Enterprise Coexistence
File Migration
Google Drive Migration
OneDrive Migration
Google Shared Drives Migration
Box Migration
Dropbox Migration
Archive Migration
Google Vault to Microsoft 365 Migration
Microsoft 365 Online Archive Migration
Site Migration
Google Sites to SharePoint Migration
SharePoint Migration
Tenant Migration
Microsoft 365 tenant to tenant Migration
Google Workspace to Microsoft 365 Migration
Microsoft 365 to Google Workspace Migration
Intune and Devices Migration
Teams Migration
Google Groups to Office 365 Migration
Slack to Teams Migration
Slack to Google Chat Migration
Microsoft Teams to Teams Migration
Microsoft Teams to Google Chat Migration
Google Chat to Microsoft Teams Migration
Signature
Signature Management tool

© 2024. All Rights Reserved.