Intune Tool Box – Rebuild of Intune in PowerShell

7. July 20225. May 2026 jannikreinhard15 Comments

This post introduces the Intune Toolbox — my open-source attempt at Rebuilding Intune in PowerShell. It is a modular collection of PowerShell scripts that wrap the most common Intune admin operations (devices, apps, policies, assignments) so you can run them from your terminal instead of clicking through the admin centre.

I think everyone who works with Intune on a daily basis knows the situation that they would like to have a simple feature that would simplify their daily work. In order to close exactly these gaps I decided to code my own tool with many small features that would make the life for Intune admins easier. This was the birth of the Intune Tool Box. This tool is a WPF application that is written in PowerShell. The app has the same design as Intune but offers small helpers for the daily work. The good thing is that this app is built in such a way that it can be easily extended at any time. If you have any features in your mind that you are missing in Intune console but is possible to solve this via graph so let me know that I can add this to the app. My plan is to develop the app step by step and bring in new cool features.

Features

Overall Environment View:

On the start page you can get an overview of your complete environment and see how many clients are enrolled per OS. Additionally you see the count how many devices are compliant or not compliant and the count how many mdm only or hybrid enrolled devices are in your environment.

Group View:

In this view you get an overview of all groups in your environment with all the features known from the portal.

Sync all devices:

This feature helps you sync all devices in a specific group. This could be helpful to shorten the time until a configuration change is effective on all devices in a group. You only need one click and the sync will be triggered on all devices in the group.

Group Overview:

I think you have often been in a situation where you wanted to see what is assigned to a group. Now you can easily see this in the overview.

Migrate Group:
In your environment you have multiple groups to create assignments of an app or a configuration profile. If you later realize it would be better if this was not a device group but a user group, it is hard to change this without impacting the user or requiring significant effort. With this function you can convert a user group into a device group or a device group into a user group based on the user assigned to a device or based on the devices assigned to the user. If you select migrate to device group you can also choose the operation systems you want to consider.

Duplicate Group:

Sometimes you need exactly the same group but with small adjustments. In the Intune console there is no feature to copy a group with the same members. This feature provides you exactly this possibility.

Assign Items:

You know the situation you have a new group and want to assign them to different items. What you need to do is open each individual configuration profile, app, etc. and add the assignment. With the Intune Tool Box this is much faster. You select the group and assign everything you need very easily in the group view.

How does it work

This application is a WPF XAML application. That means the complete GUI is written in XAML. For this I have taken Visual Studio because the editor in Visual Studio offers a preview to see directly how the change looks. But what I learned is that it doesn’t always look good in the app if it looks good in the editor.

How can you use the Intune Tool Box

Open the GitHub repository
Download and unzip the whole folder

Make sure the PowerShell SDK is installed on your system. If not, install the SDK using the following command:

Install-Module Microsoft.Graph -Scope CurrentUser

Execute the Start-IntuneToolBox.ps1
Have fun

Conclusion

I am happy that after hours of development I can release the first version of the Intune Tool Box. I am happy for everyone who tests my tool and gives me feedback and reports possible bugs. I am also happy about every idea how I can develop my tool further. I hope I can simplify your daily work with this tool. Have fun testing the Intune Tool Box.

Update 15.07.2022

If you get the following error on your system when executing the Intune Tool Box:

You have to unblock the DLLs. Navigate to the libraries folder and click Unblock in the properties of each DLL.

It may be that you need to restart your PowerShell session to get the error message gone.

15 thoughts on “Intune Tool Box – Rebuild of Intune in PowerShell”

User211 says:

7. July 2022 at 20:26

This is awesome, great work!
bradstevens says:

7. July 2022 at 20:26

This is awesome, thankyou!
beardgeekthe says:

21. July 2022 at 17:44

Hi Jannik! We’re trying your tool but we received next error message when we execute Start-IntuneToolBox after update Graph modules

The property ‘source’ cannot be found on this object. Verify that the property exists and can be set.
At E:\Software\IntuneToolBox-main\modules\uiHandler.psm1:460 char:5
+ $WPFImgButtonCloseMenue.source = Get-DecodeBase64Image -ImageBase …
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : InvalidOperation: (:) [], RuntimeException
+ FullyQualifiedErrorId : PropertyNotFound

Could you help us please?

Thank you in advance!
- jannikreinhard says:
  
  21. July 2022 at 21:15
  
  Can you download the latest version and test again?
- beardgeekthe says:
  
  22. July 2022 at 10:02
  
  Yesterday we downloaded the lastest version and with this version happen that issue, thanks in advance!
- beardgeekthe says:
  
  26. July 2022 at 17:52
  
  I still have the same problem. Finally it loads but without any icon, I can’t do anything at all.
- eddietrax says:
  
  26. July 2022 at 20:06
  
  We have over 13,000 groups and close to 800 devices in our tenant. Unfortunately the toolbox isn’t usable at this point but I am really excited to see where this is going. But I don’t think it’s quite ready for primetime just yet. I hate the Endpoint web experience with a passion so I was hoping for a solution to make the experience better. Jannik thank you for all of your hardware and all that you do. Will be waiting in anticipation for further updates.
- jannikreinhard says:
  
  26. July 2022 at 20:11
  
  This is a very valuable feedback. I will work on improving the performance on bigger setups. Thank you I will come back with a new version with also more features.
- jannikreinhard says:
  
  26. July 2022 at 20:25
  
  I was able to reproduce the issue. Now it is fixed.
Eddie says:

22. July 2022 at 20:05

Cannot get this to work

At C:\Users\jimenezep.a\Documents\Scripts\IntuneToolBox-main\modules\utility.psm1:232 char:7
+ Get-MgUserPhotoContent -UserId $upn -OutFile $path
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : InvalidOperation: ({ UserId = JIMENEZEP.a@cooley.com }:f__AnonymousType5`1) [Get-MgUserPhotoContent_Get], RestException`1
+ FullyQualifiedErrorId : UnknownError,Microsoft.Graph.PowerShell.Cmdlets.GetMgUserPhotoContent_Get
Get-MgDeviceManagementManagedDeviceOverview : {
“_version”: 3,
“Message”: “An internal server error has occurred – Operation ID (for customer support): 00000000-0000-0000-0000-000000000000 – Activity ID: 1972af16-8a44-415e-96d2-25611513c4a8 – Url:
https://fef.msua02.manage.microsoft.com/DeviceFE/StatelessDeviceFEService/deviceManagement/managedDeviceOverview?api-version=5022-05-24“,
“CustomApiErrorPhrase”: “”,
“RetryAfter”: null,
“ErrorSourceService”: “”,
“HttpHeaders”: “{}”
}
At C:\Users\jimenezep.a\Documents\Scripts\IntuneToolBox-main\modules\pageMain.psm1:19 char:5
+ $deviceManagementOverview = Get-MgDeviceManagementManagedDeviceOv …
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : InvalidOperation: ({ Property = , ExpandProperty = }:f__AnonymousType1`2) [Get-MgDeviceMan…iceOverview_Get], RestException`1
+ FullyQualifiedErrorId : InternalServerError,Microsoft.Graph.PowerShell.Cmdlets.GetMgDeviceManagementManagedDeviceOverview_Get

None of the DLLs are blocked. Graph is connected. Please advise, thanks!
- jannikreinhard says:
  
  23. July 2022 at 12:22
  
  The issue is that the user had no profile picture. When did you download the Tool box. I have fixed this on Thursday.
- jannikreinhard says:
  
  25. July 2022 at 09:28
  
  Hey Eddie, did you checked the V 1.1 this should fixed this issue
- eddietrax says:
  
  25. July 2022 at 19:38
  
  Toolbox eventually launched (yay!) but it’s really slow. For example if I press any of the buttons, it will hang and take about 5 minutes to show the action. I’m also only seeing Home and Group Mgmt.
- jannikreinhard says:
  
  26. July 2022 at 07:30
  
  Hi Edi, how many devices and groups are in your tenant. In the version 1.1 there are only the home and the group mgmt. view but it is planned to further develop this
eddietrax says:

25. July 2022 at 19:32

Thank you. After running the script and authenticating against my user, Intune Tool Box begins to initialize but now I’m faced with this:

Get-MgUserPhotoContent : {
“errorCode”: “EnterpriseEntityNotFound”,
“message”: “Accessing identity not a consumer, so async provisioning of mailbox (a.k.a. ‘shard’) for target identity was aborted”,
“target”: null,
“details”: null,
“innerError”: null,
“instanceAnnotations”: []
}
At C:\Users\jimenezep.a\Documents\Scripts\IntuneToolBox-main\IntuneToolBox-main\modules\utility.psm1:232 char:7
+ Get-MgUserPhotoContent -UserId $upn -OutFile $path
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : InvalidOperation: ({ UserId = JIMENEZEP.a@cooley.com }:f__AnonymousType5`1) [Get-MgUserPhotoContent_Get], RestException`1
+ FullyQualifiedErrorId : UnknownError,Microsoft.Graph.PowerShell.Cmdlets.GetMgUserPhotoContent_Get