Category: Automation

  • Automatically assign Intune Scope Tags based on User location using Entra ID Groups

    Automatically assign Intune Scope Tags based on User location using Entra ID Groups

    A while ago I wrote a blog post, about how you can automatically assign Intune Scope Tags based on Entra ID User information: Set Intune Device ScopeTags based on User Locations – Mike’s MDM Blog (mikemdm.de) This script directly assigned the Scope Tag to the Intune object. While this script worked flawlessly for us for…

  • Automatically set Intune Device Categories based on Inventory data

    Automatically set Intune Device Categories based on Inventory data

    Today I want to show you, how you can automatically set Intune Device Categories based on data already available in Intune / Entra, like Device Name, Device Model, Enrollment Profile Name, Join Type, etc. I found a few articles that will try to do similar, but most of what I found did not scale well…

  • Assign Device Tags in MDE using information from Intune and Entra ID

    Assign Device Tags in MDE using information from Intune and Entra ID

    Today I want to show you, how you can automatically assign Tags in Microsoft Defender for Endpoint based on information from Intune and Entra ID. The goal was to assign Tags containing the Company Name of the user from Entra ID of all Intune managed devices in MDE. If a device that had a Tag…

  • Entra ID Group for Intune Devices enrolled after a given date

    Entra ID Group for Intune Devices enrolled after a given date

    Today I want to show you a little script that allows you to dynamically populate a Entra ID group with Intune Devices that are enrolled after a given date. This can be useful in scenarios, where you want to rollout a new feature to newly enrolled devices, but not touch existing devices. Unfortunately, this is…

  • Convert AzureAD Registered “Personal” Devices to “Corporate”

    Convert AzureAD Registered “Personal” Devices to “Corporate”

    In our environment we had a lot AzureAD Registered Devices that were corporate owned, but couldn’t be AzureAD Joined or Hybrid AzureAD Joined due to some technical limitations One issue with this setup are the limitations that come with a device tagged as “Personal” in Intune like the missing App Inventory of these devices. But…

  • Automatically set Intune Primary User based on the logged on User

    Automatically set Intune Primary User based on the logged on User

    Searching for an easy solution to set the Intune Primary User automatically for a subset of devices? We have a simply solution for you. In our case we needed a solution to automatically set the Primary User for our Intune managed VDI. The VMs were all automatically AzureAD Joined via a Windows Configuration Designer PPKG,…

  • Set Intune Device ScopeTags based on User Locations

    Set Intune Device ScopeTags based on User Locations

    UPDATE 2024_08_11: I have cerated a newer version of this script, that no longer assigns the Scope Tags directly, but via Entra ID Groups: Automatically assign Intune Scope Tags based on User location using Entra ID Groups – Mike’s MDM Blog (mikemdm.de)You can still use this version if you want, but I would recommend to…