Intune change device ownership powershell. This script allows you to set the device cat...
Intune change device ownership powershell. This script allows you to set the device category, ownership, and primary user of a single, or many Intune devices. NOTES This script will do a check for supervised status if desired. If you don't have corporate identifiers for Windows in Intune, or if you remove them, devices that are Microsoft Entra domain joined are marked as corporate-owned at enrollment time. They demonstrate this by making HTTPS RESTful API requests to the Microsoft Graph API from PowerShell. In this post, I walk through real world testing of the Change Review Agent, Policy Configuration Agent, and more, including where they shine, where they fall short, and what this means for SCU usage and governance. Mar 3, 2026 · Microsoft Security Copilot agents are now embedded directly inside the Intune admin center. I also show why pressing the magical Sync button, in Intune or on the device, does not automatically start the IME PowerShell workload. ps1 at master · microsoftgraph/powershell-intune-samples Feb 3, 2026 · Tip Microsoft Entra hybrid joined Windows 10 or newer devices don't have an owner unless the primary user is set in Microsoft Intune. Deploying the PowerShell Script Let’s start at the beginning. I have a partially completed script that will change this, the device category, and the primary user. During this check-in, the device reports its current state and asks Intune for any new or updated instructions. If you're looking for a device by owner and don't find it, search by the device ID. Windows corporate identifiers can only change ownership type if someone adds them to Microsoft Intune. BUT, you say, I have A LOT of devices that need their ownership changed! Well, I got you covered with a script to make it nice and easy! All you need is a CSV with Intune Device IDs. For more information, see Role-based access control for Microsoft Intune. There is no single PowerShell command to change the owner. An Intune Service Administrator is required to confirm licensing requirements before using Remediations for the first time. Manage Windows Update for Business configurations, monitor device health, and resolve enrolment and patch issues across diverse device types and ownership models Develop and maintain PowerShell scripts for automation and compliance remediation; leverage Intune Proactive Remediations and Endpoint Analytics to detect and resolve device issues at Yes. You can do it with PowerShell. Nov 4, 2024 · Easy. - powershell-intune-samples/ManagedDevices/ManagedDevices_DeviceOwnership_Set. Dec 15, 2019 · When I tried to enroll Windows devices to Intune, the login user is different than device owner. ps1 script is a PowerShell for bulk conversion of device ownership status in Microsoft Intune to "Corporate". MEM_ConvertToCorporate. 5 days ago · Learn how to manage rules for dynamic membership groups to automatically populate group members and rule references. Feb 27, 2026 · In this blog, I will explain what actually triggers the Intune Management Extension (IME) to evaluate and execute PowerShell scripts. Nov 4, 2024 · Go to Device properties and change the Device Ownership. Is there way to change device ownership with upn through PowerShell? Feb 20, 2026 · This article describes how to use Microsoft Intune to define custom exclusions for Microsoft Defender Antivirus in Microsoft Windows. Dec 15, 2019 · @Arif Usman In order to change the device owner, you would need to first add another owner to the device and then remove the existing user. If you see a device that's Microsoft Entra hybrid joined with a state of Pending in the Registered column, the device has been synchronized from Microsoft Entra Connect and is 2 days ago · A practical guide to the new Intune PowerShell script installer for Win32 apps. Packaging, scripting, detection rules, and tips that actually work. Go to Device properties and change the Device Ownership. You can change the last part according to your requirement. Sep 8, 2025 · Permissions For Remediations, the user needs permissions appropriate to their role under the Device configurations category. Exclusions for process-opened files apply only to real-time protection. For example, I want to change all the personal device ownership to corporate. I try to change the last part script as below: Yes. . This repository of PowerShell sample scripts show how to access Intune service resources. Mar 1, 2026 · What “Intune Sync” Actually Means on Windows Intune sync on Windows is the MDM check-in process between the device and the Microsoft Intune service. Custom exclusions apply to scheduled scans, on-demand scans, and always-on real-time protection and monitoring. Oct 5, 2023 · Note: Non-Microsoft link, just for the reference. This script was developed to address the lack of a native bulk operation feature in Intune (as of December 2023), made my life easier in large-scale device management scenarios. Apr 11, 2025 · Required permissions Device enrollment requires Intune Administrator or Policy and Profile Manager permissions. You can set any combination of those items and you can get the list of devices and the user that you’d like to set as the primary user in as many ways as I could possibly imagine. This script will do a check for supervised status if desired. A custom Windows Autopilot device manager role can also be created by using role-based access control (RBAC). rhdycfwrchhzbxtrfsmjugysclbfdjavxnanehxrhox