HomeSetup guides › Upload the VPP/location token into Intune
Setup guide · from scratch

Upload the VPP/location token into Intune

Creates the Apple VPP connector in Intune from the .vpptoken you downloaded in ABM. The Apple Account you enter MUST exactly match the Managed Apple ID that owns the token or it shows invalid.

Intune admin center (Tenant administration > Connectors and tokens > Apple VPP tokens)
Step 1. Sign in to https://intune.microsoft.com as an Intune Administrator.
Screenshot: Intune admin center home (captured during a live customer build — coming to this page)
Step 2. Go to Tenant administration > Connectors and tokens > Apple VPP tokens.
Screenshot: Empty Apple VPP tokens list before Create (captured during a live customer build — coming to this page)
Step 3. Click 'Create' to open the four-page wizard.
Screenshot: Create VPP token wizard Basics page (captured during a live customer build — coming to this page)
Step 4. BASICS: enter a Token Name, the Apple Account (Managed Apple ID email that owns the token), and browse to the .vpptoken file; Next.
Screenshot: Basics page with the three fields filled (captured during a live customer build — coming to this page)
Step 5. SETTINGS: set 'Take control from another MDM' only if migrating; set Country/Region to your canonical store; Type of VPP account = Business; Automatic app updates = Yes.
Screenshot: Settings page fields (captured during a live customer build — coming to this page)
Step 6. Tick 'I grant Microsoft permission to send both user and device information to Apple' and select 'I agree'; Next.
Screenshot: Permission-agreement tick (captured during a live customer build — coming to this page)
Step 7. SCOPE TAGS: optionally add scope tags; Next.
Screenshot: Scope tags page (captured during a live customer build — coming to this page)
Step 8. REVIEW + CREATE: check the values and click Create.
Screenshot: Review + Create summary (captured during a live customer build — coming to this page)
Step 9. Confirm the token lists with a green/valid status and expiry date.
Screenshot: Token list showing valid status + expiry (captured during a live customer build — coming to this page)

See it on a real device.

Decolla is in private build — early-access members see a build defined, deployed and rolled back first.

Get early access