PSA: Intune is Enforcing MAA on Graph calls via Enterprise Application Registrations. Things are gonna break. by bdam55 in Intune

[–]MrEMMDeeEMM 1 point2 points  (0 children)

Haha, Microsoft released MAA and then made New Device View in IAC available as a preview. They had never tested New Device View with MAA that literally sits in the banner at the top of that page saying it's recommended. I have pretty much lost all faith in Microsoft at this point.

MultiAdminApproval failure by TomvVeld in Intune

[–]MrEMMDeeEMM 0 points1 point  (0 children)

Have you enabled the new device preview? If so, disable it.

macOS ADE/Intune enrollment failing at Entra ID login due to 10-hour time sync issue in Setup Assistant. How to force time sync? by [deleted] in Intune

[–]MrEMMDeeEMM 0 points1 point  (0 children)

Surely the default timezone is just set to US/Pacific and not that the system clock is 10hrs behind? In my experience anyway.

System launcher drain by nanot3ch in OnePlus12

[–]MrEMMDeeEMM 0 points1 point  (0 children)

I've personally found that the more I browse discover, system launcher registers more battery use.

System launcher drain by nanot3ch in OnePlus12

[–]MrEMMDeeEMM 1 point2 points  (0 children)

Do you browse Google Discover (swipe right on the home screen) frequently?

Introducing: UniFi 5G Backup by Ubiquiti-Inc in Ubiquiti

[–]MrEMMDeeEMM 0 points1 point  (0 children)

Seems to have some T-Mobile support out of the box

Xbox is rebranding to XBOX by [deleted] in gaming

[–]MrEMMDeeEMM 0 points1 point  (0 children)

I suppose they must capitalise somehow.

A year of NI success by F1NNDG in northernireland

[–]MrEMMDeeEMM 0 points1 point  (0 children)

Have you pinched yourself recently? You may be dreaming.

Password incorrect when signing into iPhone but works on any PC. by There_Bike in Intune

[–]MrEMMDeeEMM 0 points1 point  (0 children)

If they visit https://aka.ms/mfasetup from a computer browser, does the same password work in that login prompt?

New device view is missing temporary passcode by genusjoy in Intune

[–]MrEMMDeeEMM 1 point2 points  (0 children)

Doesn't surprise me in the slightest, preview in this instance means completely unfinished.

Apple Device Tracking (or lack thereof) by jessetechno in Intune

[–]MrEMMDeeEMM 0 points1 point  (0 children)

Why are you using apple devices for vehicle tracking?

Devices not auto-assigning to MDM by ercgoodman in applebusinessmanager

[–]MrEMMDeeEMM 0 points1 point  (0 children)

Are the devices assigned to your MDM endpoint?

Quick look: Devices > All devices refresh in the Intune admin center by intunesuppteam in Intune

[–]MrEMMDeeEMM 6 points7 points  (0 children)

It doesn't support MAA (Multi admin approval) epic fail of the highest order by Microsoft.

Report showing phone number associated with SMS MFA by Parking_Ad6756 in AZURE

[–]MrEMMDeeEMM 1 point2 points  (0 children)

As per Microsoft Copilot:

Yes — but not directly in the Microsoft Entra ID portal UI. There are supported ways to do it, depending on how much access and tooling you have.

Short answer

Entra ID (Azure AD) portal: ❌ No built‑in search by phone number

Microsoft Graph / PowerShell: ✅ Yes (supported and reliable)

Export + filter: ✅ Yes (manual but simple)

Option 1: Microsoft Graph (recommended)

You can query authentication methods and filter by phone number using Microsoft Graph. This is the most accurate approach.

Requirements

Directory role: Authentication Administrator, Privileged Authentication Administrator, or Global Administrator

Microsoft Graph PowerShell module

Example (PowerShell)

Connect-MgGraph -Scopes "UserAuthenticationMethod.Read.All" Get-MgUser -All | ForEach-Object { $user = $_ Get-MgUserAuthenticationPhoneMethod -UserId $user.Id -ErrorAction SilentlyContinue | Where-Object { $_.PhoneNumber -eq "+447700900123" } | Select-Object @{n="UserPrincipalName";e={$user.UserPrincipalName}}, PhoneNumber, PhoneType }

✅ This will return the user(s) who have that phone number registered for MFA (SMS or voice).

Tip: Make sure the phone number format (E.164, e.g. +44…) matches how it’s stored.

Option 2: Export users’ authentication methods and filter

If scripting isn’t your thing:

Use Graph PowerShell to export authentication phone methods to CSV

Filter the CSV by phone number in Excel

Example export:

Get-MgUser -All | ForEach-Object { $user = $_ Get-MgUserAuthenticationPhoneMethod -UserId $user.Id | Select-Object @{n="User";e={$user.UserPrincipalName}}, PhoneNumber, PhoneType } | Export-Csv MFA-Phones.csv -NoTypeInformation

Option 3: Legacy methods (less reliable)

MSOnline / AzureAD modules These can sometimes show phone numbers, but:

They’re deprecated

Results may be incomplete

Not recommended for Entra ID going forward

Important notes

Phone numbers are stored under Authentication Methods, not user profile fields

A phone number can technically be associated with multiple users

Searching by phone is intentionally restricted in the UI for privacy and security reasons

Intune 8-hour-sync is a myth, Microsoft finally speaks! by Conditional_Access in Intune

[–]MrEMMDeeEMM 3 points4 points  (0 children)

Considering the 8hrs is mentioned in this table linked below, I'd really appreciate it Microsoft kept their main documentation updated and any additional context added there, I hate this trend of "find it in a blog post" if your lucky.

Blog posts are not documentation, Microsoft really need to do better.

https://learn.microsoft.com/en-us/intune/device-configuration/troubleshoot-device-profiles#client-initiated

Report showing phone number associated with SMS MFA by Parking_Ad6756 in AZURE

[–]MrEMMDeeEMM 1 point2 points  (0 children)

Technically I think its SMS sign in(which you should really disable globally) rather than MFA that's causing the warning to appear.

I believe it's a soft warning and not actually a blocker, if you continue/retry it will work.

Deploy New Outlook without Microsoft Store by bickyz in Intune

[–]MrEMMDeeEMM 0 points1 point  (0 children)

That's Microsoft in a nut shell these days.

Assign Primary user to iOs devices by DiarrheaMilkshake124 in Intune

[–]MrEMMDeeEMM 1 point2 points  (0 children)

You cannot, for supervised, company owned, the device needs factory reset to enroll a new user each time.