Microsoft Intune

Microsoft Intune

Available

MDM / Endpoint Management

Intune enrollment status is a meaningful input to exposure scoring. An asset that isn't Intune-enrolled is more likely to be missing patching enforcement, policy compliance, and configuration baselines - all of which affect how exposed a vulnerability on that asset actually is. Koopic reads managed device inventory, MDM compliance status, enrollment data, and agent health from Microsoft Graph, and uses that context to weight vulnerability risk differently across managed and unmanaged endpoints.

Signal in your risk score

Data from Microsoft Intune flows into Koopic's unified asset inventory and shapes how vulnerabilities are scored. Koopic combines asset context - exposure, control presence, criticality - with CVSS severity, EPSS exploit probability, and CISA KEV membership to produce a single, explainable risk score per vulnerability per asset. A CVSS 9.8 on a segmented host with a compensating control scores lower than a CVSS 7.4 on an internet-exposed, unmanaged endpoint with no control in place.

What Microsoft Intune contributes to risk scoring

Complete managed device inventory from Intune
MDM compliance status per device
Enrollment data and management agent info
OS details, model, manufacturer, and serial number
Last check-in timestamp for freshness tracking
Automatic mapping to unified asset schema

How to connect

1

One-click connect

Click "Connect with Microsoft" in Koopic. We automatically create the app registration on your Azure tenant with the correct Intune Graph API permissions - no manual portal setup required.

2

Grant admin consent

An Azure admin reviews and approves the permissions during the OAuth flow. Once consented, Koopic securely stores the credentials encrypted at rest.

3

Set up the integration

Select Microsoft Intune in the integration wizard, choose your credential, and set a sync schedule.

4

Verify the data

After the first sync, check the Analysis Table to see Intune data alongside your other sources.

How teams use this data

MDM Enrollment Gaps

Find devices that appear in AD or Defender but are missing from Intune enrollment.

Compliance Correlation

Combine Intune MDM compliance with Defender EDR health for a complete compliance picture.

Device Lifecycle

Track devices from enrollment through retirement using Intune data merged with other sources.

Related integrations

Microsoft Defender for Endpoint

Microsoft Defender for Endpoint

EDR sensor health and endpoint control presence - a key compensating-control signal for risk scoring.
Azure Virtual Machines

Azure Virtual Machines

Cloud VM exposure context - internet-facing cloud assets carry higher inherent risk weight.
Active Directory

Active Directory

Organizational context and asset identity - OU, domain, and last-logon data enrich exposure scoring.

See it on your data

Work with us directly to run Koopic's prioritization engine on your actual vulnerability and asset data.

Become a design partner How the scoring works