Skip to content

ugurkocde/IntuneAssignmentChecker

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

34 Commits
IntuneAssignmentChecker.ps1
IntuneAssignmentChecker.ps1
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
version.txt
version.txt
 
 

Repository files navigation

Intune Assignment Checker

Sign up for my newsletter to receive immediate notifications whenever I launch a new tool, script or update.
Sign up to the Newsletter

Overview

The Intune Assignment Checker script is here to simplify your life. It will provide a detailed overview of assigned Intune Configuration Profiles, Compliance Policies, and Applications for user, groups and devices.

Website: https://intuneassignmentchecker.ugurkoc.de/

Demo

IntuneAssignmentChecker_Demo.mp4

Features

  • Checks which users or devices are assigned to specific Intune policies.
  • Verifies the app registration permissions against Microsoft Graph to ensure it can retrieve the necessary information.
  • Provides descriptions for each permission to explain why it's necessary.

Prerequisites

Before running this script, you need:

  • PowerShell 5.1 or higher.
  • Microsoft Graph PowerShell SDK installed. You can install it using Install-Module Microsoft.Graph -Scope CurrentUser.
  • An Entra ID application registration with the following permissions granted:
    • User.Read.All
    • Group.Read.All
    • Device.Read.All
    • DeviceManagementApps.Read.All
    • DeviceManagementConfiguration.Read.All
    • DeviceManagementManagedDevices.Read.All

Ensure that you have granted admin consent for these permissions in the Azure portal.

Setup

  1. Clone this repository or download the IntuneAssignmentChecker.ps1 script.
  2. Fill in your Entra ID application registration details (App ID, Tenant ID, and Secret) at the beginning of the script.
# Fill in your App ID, Tenant ID, and Secret
$appid = '<YourAppIdHere>' # App ID of the App Registration
$tenantid = '<YourTenantIdHere>' # Tenant ID of your Azure AD
$secret = '<YourSecretHere>' # Secret of the App Registration
  1. Run the script in PowerShell.

Usage

To run the script, open PowerShell and navigate to the directory containing IntuneAssignmentChecker.ps1. Run the script using:

.\IntuneAssignmentChecker.ps1

Follow the on-screen instructions to select the type of entity you want to check the assignments for in Intune:

  • 1 for Users
  • 2 for Groups
  • 3 for Devices
  • 4 to Check Permissions
  • 5 to Exit

Contributing

Contributions to are welcome! Please feel free to submit pull requests or open issues to improve the script or suggest new features.

License

This project is licensed under the MIT License - see the LICENSE file for details.

About

intuneassignmentchecker.ugurkoc.de/

Resources

Readme

License

MIT license
Activity

Stars

49 stars

Watchers

7 watching

Forks

8 forks
Report repository

Releases 3

Update to 1.3.0 Latest
Jul 4, 2024
+ 2 releases

Contributors 2

Languages