Search Results

This tutorial describes how an automation can be used to set the primary user according to the last signed in user. The Intune data is queried via an App Registration on Graph and modified accordingly. This automation is based on an Azure runbook and executes ...

This automation sets the primary mobile number as MFA method according to a UPN. This can be used, for example, if from an internal store or user interface (e.g. ServiceNow) the users should automatically set the MFA method a first time. For example, this code...

Requirements: Basic Azure Function knowledge and access to an Azure Key Vault & Azure Function. This topic shows you how to work with secrets from Azure Key Vault in your Azure Functions code without requiring any code changes. Azure Key Vault is a service th...

On this page you will find small helpful Graph API queries that can help you in operation or engineering. The topics will be added gradually and include any Microsoft Graph API products, such as Intune, Microsoft Entra ID, SharePoint and many more. Microsoft ...

Local User Management Add Entra ID User to local Administrator Group $UPN = "<yourupn>" Add-LocalGroupMember -SID 'S-1-5-32-544' -Member "AzureAD\$UPN+ Add Entra ID User to local Remote Desktop Users Group $UPN = "<yourupn>" Add-LocalGroupMember -SID "S-...

This automation solves a very small specific use case. As soon as the mobile devices (IOS, Android) are registered in Intune and are not set up via enrollment type profiles, no more scope tags can be set based on device parameters. This is where this automatio...

This guide is intended as a transition and for a very specific problem case. Unfortunately, not all software vendors maintain their packages on the different platforms. Since Microsoft has discontinued the Microsoft Store for Business since mid 2023 and the su...

Requirements: Microsoft Entra ID Authentication token is needed to use this script and the Graph API. This tool allows you to initiate Intune Sync on multiple or all devices. The Graph API is accessed via PowerShell and triggers the sync on the devices. Perm...

To enroll a Windows device into Intune via Windows Autopilot, it is needed to register the serial number and hardware id in the tenant via an interactive login. The user has to log in as "Intune Administrator" and upload the information via Graph API into Intu...

Azure Workbooks are a powerful tool for building interactive dashboards and visualizing data at scale. This guide provides you with a structured, practical approach to deploying and managing Azure Workbooks, based on real-world experience and best practices. ...

This tutorial shows how to build a REST API that executes PowerShell code using an Azure Function. This code can then return values and objects as JSON responses using "return".  Using Function To use this function you need the following: Azure Function w...

In this concept, we establish a central repository for PowerShell scripts to encourage collaboration and active work on scripts. We rely on the following elements: Central repository for PowerShell Scripts: We set up a central repository where all PowerShel...

To get started with GIT, first install Visual Studio Code (VS Code) and GIT on your computer. After installation, configure GIT with your name and email address. These steps are documented here. Install VS Code Install VS Code on your computer. Here is a win...

This PowerShell script simplifies Active Directory user management. It quickly identifies users with network share home directory paths within a specified OU. You can easily view their details, such as names, account names, and paths, and export this informati...

This PowerShell script streamlines the process of setting or updating home directory paths for multiple Active Directory (AD) users. It reads a list of usernames or User Principal Names (UPNs) from a file and uses the Set-ADUser cmdlet for the task. You can cu...

Managing applications across a fleet of devices is a critical task for IT administrators. With this PowerShell script you can leverage the power of Microsoft Intune and the Microsoft Graph API to streamline application inventory management. By using this scri...

Sometimes it happens that there are several devices with the same serial number in Intune. This can happen for example when switching from AD/SCCM built clients to Intune only clients. This script helps to find the duplicate entries. At the end a CSV is outpu...

This concept serves to standardize the communication channels and working methods within an enterprise grade workplace team.  Basic rules of communication:  We inform ourselves daily in the defined communication channels (obligation to get). We communicat...

This tutorial is about how to download intunewin content according to an Intune App ID. It is only about the file. The other configurations outside the file can be fetched via another endpoint as JSON. The script first gets the file version and then the stora...

Problem description Microsoft has a bug with local permission groups (e.g. Administrators & Remote Desktop Users) on Windows 10 & 11. If you use Microsoft Entra ID user objects to grant permissions onto Microsoft Entra ID joined devices you can do this either...