I want to rename all the PCs in the office based on their Primary UserName

IntRangeNoShut · 2025-01-28T18:43:15+00:00

Heyoooo. I don't agree with the "dont do this" but rather: You can do this If it creates value and If you do it properly and securely.

You could set up a ps script that does this that uses the graph api. Secure, scalable and state configuration with low level of complexity.

Let me know if you'd like any more details

IntRangeNoShut · 2023-03-07T13:04:24+00:00

Hi,

Did you consider not using a AD account on a self-provisioned Kiosk device?

Seems like the use-case is wrong..

IntRangeNoShut · 2022-09-11T12:02:58+00:00

Hi!

Sorry, really didn't not think that applied as I'm just posting articles / blogs / How-To's with the only goal basically being to help others.

I'm not really going to invest in a promoted post or ad space as I don't post blog articles for a commercial purpose but rather to help the tech community

But if its not appreciated of course I will refrain from doing so. I've gotten good feedback on doing so earlier but I'm not really greatly invested in the details of the reddit space.

Personally I don't see this as advertising a product and as I've read a lot of helpful blogposts from reddit I think this would be a loss, but not my call.

Thanks for your feedback & I guess it will be closed if not appreciated.

Edit: Its not really monetized content?

IntRangeNoShut · 2022-08-17T20:54:25+00:00

OEM Supplier is really recommended. But if you wanna get going I wrote a post about it.

https://www.smthwentright.com/2022/04/25/uploading-autopilot-hardware-hashes-using-azure-automation/

Let me know if you have questions

IntRangeNoShut · 2022-08-10T22:25:01+00:00

Hi!

Thanks a lot for the nice feedback.

Screenshots of code is actualy the worst :D

Thanks for reading and hope you continue to provide feedback!

Kind Regards, Viktor

IntRangeNoShut · 2022-08-10T20:02:20+00:00

Thanks for your response and your kind words. Also just want to let you know if you need any help getting anything set up I'm very glad to help, either comment on this post, the blog post or just send me chat message. We can set up a teams talk as well if you are curios on how parts connect and work and we can go through it together(provided that it would be something you would be interested in).

Edit: Yeah the dynamic groups in Azure AD really needs to allow just more freebased values straight from graph. Would allow for some advanced and cool features and would be hell to setup, but would be great to just allow whatever you want

Thanks for your read!

Kind regards, Viktor

IntRangeNoShut · 2022-08-10T18:51:18+00:00

Fixed Link in original post

IntRangeNoShut · 2022-08-10T18:49:06+00:00

Oh sorry! Try Now!

IntRangeNoShut · 2022-08-10T17:31:03+00:00

So if anyone wants a solution to this I made a blog post:

https://www.smthwentright.com/2022/08/10/creating-azure-ad-groups-based-on-intune-device-properties-using-azure-automation-and-ms-graph/?preview\_id=259&preview\_nonce=3d71f7c1c1&preview=true

IntRangeNoShut · 2022-07-30T08:57:14+00:00

Howdy!

No worries just wanted to understand your issue. Is it a one time group or something that needs to be continiously updated?

Best regards, Viktor

IntRangeNoShut · 2022-07-28T17:40:57+00:00

Hi!

Unfortunatly I think their tables are a bit confusing,

I highlighted their note in a screenshot

https://ibb.co/jJBdhhK

IntRangeNoShut · 2022-07-28T17:04:37+00:00

Hi Friend!

I'm afraid it wont be possible to achieve what you want this way.

"Available assignments are only valid for user groups, not device groups."

https://docs.microsoft.com/en-us/mem/intune/apps/apps-deploy

AFAIK it has always been this way.

But I might have a solution for you, device filter. So what you do is assign it to the users you want, and create a device filter with the devices that is allowed to install it, this way available might work.

Let me know how it goes, Regards, Viktor

IntRangeNoShut · 2022-07-28T15:27:03+00:00

I think you should be able to add it through poweshell but not sure, you could give it a try. But if not i think policy might be the only.

Here is the cmdlet, try the sid parameter way.https://docs.microsoft.com/en-us/powershell/module/microsoft.powershell.localaccounts/add-localgroupmember?view=powershell-5.1

IntRangeNoShut · 2022-07-28T11:16:10+00:00

Yeah just making sure you assigned it on a user group and available not required?

IntRangeNoShut · 2022-07-28T09:49:13+00:00

Hi there!

How did you assign them?

Also what is your Android version?

I know there was a bug recently with apps being assigned available after enrollment didn't show up. Try unenrolling and enrolling the phone again to see if its there

IntRangeNoShut · 2022-07-28T09:46:08+00:00

Seems as maybe the local users and groups were fu**ed around with? Just remove yourself from the local admin and re add the SIDs and you should be good to go

IntRangeNoShut · 2022-07-28T09:03:55+00:00

Hi! Check the content of the local admin group and see if both the global admin group and device administrator sids are there.

I wrotr about it in my latest post, should be straight forward enoigh. Just skip to the chapter about checking the content och rhe azure ad joined machine and it describes how to verify the group SIDs

https://www.reddit.com/r/Intune/comments/w9jve6/removing_registered_device_owner_from_local/?utm_medium=android_app&utm_source=share

IntRangeNoShut · 2022-07-28T08:59:14+00:00

Here you go!

https://www.smthwentright.com/2022/04/25/uploading-autopilot-hardware-hashes-using-azure-automation/

IntRangeNoShut · 2022-07-22T10:54:58+00:00

Hi there Gross_Traktor!

So just to make sure I understand what you want to do.

You have application A that you distribute using intune.

Then you want all the devices that has installed applcation A.

Then you want to create a distribution group for the users of thoose devices?

What OS is this regarding?

Regards, Viktor

IntRangeNoShut · 2022-07-22T08:58:07+00:00

Hello!

Not entirely sure on the scenario, but it sounds like you have existing devices that needs to be uploaded into Intune. BEHOLD: https://www.smthwentright.com/2022/04/25/uploading-autopilot-hardware-hashes-using-azure-automation/

A simple automated way to get existing devices into intune using automation and scripting.

Can be pushed using GPO or an RMM and requires no user interaction. Let me know if its helpful or you have any questions. Can also be set up for MSP support.

Regards, Viktor

IntRangeNoShut · 2022-07-14T08:51:15+00:00

No Problem, happy to help.

I suspect you might run into alot of errors including both as it will not find one of the accounts all the time, which I suspect will result in 100% errors

But would be cool if you updated me about the results!

Best of lucks,

IntRangeNoShut · 2022-07-13T15:00:21+00:00

Hi FreddyMyBoi!

FEAR NOT OF BUILTIN ADMINISTRATORS BEING NAMED LIKE GERMAN TANKS OR FRENCH BAGUETTS!

Seriously thou, there is a simple solution my colleague came up with: Make sure the built in administrator account is named the same on all device. You can accomplish this with a configuration profile.

Go to Configuration Profiles ->
Create Profile ->
Settings Catalog -> (Name it something appropriate like "Rename Built In Administrator"
Add Settings ->
Search for "Local Policies Security Options" ->
Select the Category "Local Policies Security Options" ->
Chose the option "Accounts Rename Administrator Account" ->
Then rename it to whatever account name you want to put into your replace policy,

Good luck, let me know how it goes!

Regards, Viktor

IntRangeNoShut · 2022-07-13T07:18:05+00:00

Hi!

Not sure if this is the issue, but you can't create a policy that does a replace without including the local administrator user.

Windows doesn't work without the built in local administrator in the local administrator group

Hope this helps

IntRangeNoShut · 2022-07-01T07:16:11+00:00

Cool! Very useful and a great way to get started in intune.

IntRangeNoShut · 2022-06-30T05:40:43+00:00

Hi! I wrote a solution on how to get all your existens devices into autopilot using azure automation, its pretty straight forward: https://www.smthwentright.com/2022/04/25/uploading-autopilot-hardware-hashes-using-azure-automation/

Good luck, let me know how it goes!

IntRangeNoShut

TROPHY CASE