Hi Jim - we don't want any Android/iOS devices to show up in Imported Users and Computers from InTune and we do not want those devices to be targets for deployment through AppPortal.  We don't have mobile site enabled in AppPortal.

Thanks for the reply.  We have custom sync queries so knowing that those would take precedence on the sync makes it easy for me to exclude mobile. I wasn't sure if both SCCM and InTune would sync user/computer or just one of them but you just answered that for me.

Honestly, I don't have an Intune instance to test with, so I don't know how it behaves.  Does Intune perform a user/device sync like Jamf and UEM?  If so, I'm not sure that the custom sync query is going to help you filter that out.  However, my guess is that it doesn't and that you'll only get user/device information synced over from SCCM (via your custom queries).

I'm not sure if InTune does bring in users/computers like JAMF because we haven't integrated yet, we're in the planning stage, but we don't want to sync the mobile devices.

The only time that we should pull users/computers from Intune is when you explicitly specify that users and/or computers should be synced from Intune. This is different than in the case of UEM/JAMF, where we will pull devices from these deployment technologies on a nightly basis. 

Thanks, Charlie.  I just looked around in the UI a bit, and I now see that Intune is listed in the drop-down boxes for "Syncing Users" and "Syncing Computers" on the Deployment > Common tab, so I guess that makes sense (though it means you couldn't have both SCCM and Intune as separate standalone solutions at the same time - probably a corner case, since you'd likely just use co-management rather than independent solutions).  Anyway, always glad to be educated on new features.  Thanks, @TeriStevenson, for the question, and thanks, @CharlesW, for the answer!