Create a single Admin Role in SCCM/Intune Hybrid for iOS Devices
Create a single Admin Role in SCCM/Intune Hybrid for iOS Devices to do Apple DEP Sync and assigning profiles to this devices. Actually we need Full Administrator Role as per Microsoft Support to do this actions (Referenz # 116072193873488). But we have to limitate the administratior permission for our Intune Admins.
Thank you for your suggestion for Hybrid Mobile Device Management (MDM) with Intune and Configuration Manager.
As of August 14, 2018, we have announced that on September 1, 2019, we will retire the hybrid MDM service offering, so we are declining any suggestions specifically for hybrid scenarios.
We still support co-management, which enables you to concurrently manage Windows 10 devices by using both ConfigMgr and Intune.
We encourage you to start planning your migration for MDM from the ConfigMgr console to Azure and to shift your UserVoice votes to MDM features for Intune. For more information, see https://aka.ms/hybrid_notification
Thank you for your feedback, and thank you for using Intune and Configuration Manager!