Sign up for my newsletter to receive immediate notifications whenever I launch a new tool, script or update.
Sign up to the Newsletter
The Intune Assignment Checker
script is here to simplify your life. It will provide a detailed overview of assigned Intune Configuration Profiles, Compliance Policies, and Applications for user, groups and devices.
Website: https://intuneassignmentchecker.ugurkoc.de/
IntuneAssignmentChecker_Demo.mp4
- Checks which users or devices are assigned to specific Intune policies.
- Verifies the app registration permissions against Microsoft Graph to ensure it can retrieve the necessary information.
- Provides descriptions for each permission to explain why it's necessary.
Before running this script, you need:
- PowerShell 5.1 or higher.
- Microsoft Graph PowerShell SDK installed. You can install it using
Install-Module Microsoft.Graph -Scope CurrentUser
. - An Entra ID application registration with the following permissions granted:
User.Read.All
Group.Read.All
Device.Read.All
DeviceManagementApps.Read.All
DeviceManagementConfiguration.Read.All
DeviceManagementManagedDevices.Read.All
Ensure that you have granted admin consent for these permissions in the Azure portal.
- Clone this repository or download the
IntuneAssignmentChecker.ps1
script. - Fill in your Entra ID application registration details (App ID, Tenant ID, and Secret) at the beginning of the script.
# Fill in your App ID, Tenant ID, and Secret
$appid = '<YourAppIdHere>' # App ID of the App Registration
$tenantid = '<YourTenantIdHere>' # Tenant ID of your Azure AD
$secret = '<YourSecretHere>' # Secret of the App Registration
- Run the script in PowerShell.
To run the script, open PowerShell and navigate to the directory containing IntuneAssignmentChecker.ps1. Run the script using:
.\IntuneAssignmentChecker.ps1
Follow the on-screen instructions to select the type of entity you want to check the assignments for in Intune:
- 1 for Users
- 2 for Groups
- 3 for Devices
- 4 to Check Permissions
- 5 to Exit
Contributions to are welcome! Please feel free to submit pull requests or open issues to improve the script or suggest new features.
This project is licensed under the MIT License - see the LICENSE file for details.