Azure Tutorials for IT & Endpoint Admins

Azure Monitor Agent to monitor Windows devices (1/2) – Setup

30. July 20235. May 2026 jannikreinhard

In this blog post we want to have a closer look into a way to collect data from client systems to monitor them. With endpoint analytics Microsoft provides a very powerful way to analyze clients, remediate potential issues or also detect anomalies in the field. If you are interested in unaggregated and more detailed data to build custom solutions then the Log Analytics management agent is the right solution for you. This is the first part of a small series with two parts. In this part we will check how this service works and how to set it up, and in the other part how you can work with the data.

Diagram shows monitored object purpose and association.

Export Intune Data to OneLake for Power BI with Fabric

16. July 20235. May 2026 jannikreinhard

Intune provides a lot of data that can be exported via interfaces, which is also the foundation for Intune reporting and analytics. But wouldn’t it be cool if you could have everything from the data export to the Power BI dashboard in one place in a portal and additionally query the data Graph provides you with via SQL to build complex queries. That’s exactly what Microsoft Fabric delivers. In this blog we would like to take a closer look at this new platform.

Microsoft Fabric workflow exporting Intune data to OneLake

V2 – Get an daily device report via email or teams with logic apps – Step by Step guide

V2 – Get a Daily Device Report via Email or Teams with Logic Apps (Step by Step)

28. May 20235. May 2026 jannikreinhard9 Comments

I have already written a blog about how to send a message using Logic apps to generate a regular device report. After a presentation about automation with Intune and Graph I got good feedback if I can do a variant with Co Managed devices. So I decided to write a V2 of this blog and also update the authentication with Managed Identity. If you are interested in more blogs around the topic of logic apps, let me know and I will be happy to do a deep dive on logic apps.

Building an Intune AI Voice Bot with Azure OpenAI

23. April 20235. May 2026 jannikreinhard

This post documents building an Intune AI voice bot with Azure OpenAI. The bot listens to a help-desk-style spoken question, queries Microsoft Graph for the user’s Intune device state, and answers — out loud — with the relevant policy or compliance information.

In today’s blog, I will announce the release of our experimental AI-driven voice assistant for Microsoft Intune-related questions. As you know, I am a huge fan of automation and AI technologies. I teamed up with Fabian Peschke to develop this innovative voice bot that aims to help users with their Intune questions.

Our voice bot is built using two different Microsoft cognitive services: Azure Speech Services and OpenAI’s GPT-35 Turbo. The Azure Speech Services allows the bot to recognize and synthesize speech, while OpenAI’s engine enables the bot to understand and respond to user queries intelligently. This bot was developed based on this example from Microsoft.

Intune AI voice bot with speech and OpenAI services

Automate Intune Tasks with Azure Automation Runbooks

9. April 20235. May 2026 jannikreinhard1 Comment

As you all know I am a very very big fan of automation. The good thing is in almost all Microsoft products there are interfaces to do exactly that. This is also the case for Intune. In one of my last blogs I wrote about how to use PowerShell to automate things in Intune. I also mentioned Azure Automation. In this blog I want to go deeper into the topic and explain how you can use Azure Automation to automate recurring processes.

Azure Automation Runbook setup for Intune tasks

How to get an report with all new enrolled devices

How to Get a Report of All New Enrolled Devices

19. March 20235. May 2026 jannikreinhard4 Comments

Keeping track of newly enrolled devices in your organization can be a challenging task when relying solely on the Intune console. Wouldn’t it be awesome to receive a comprehensive report automatically via email? As you know, I love automating things. In this blog post, we’ll explore a simple and efficient way to generate a weekly report for all newly enrolled devices using PowerShell, Azure Automation Runbooks, and Microsoft Graph API. This automated solution will save you time and effort, allowing you to focus on more important tasks in managing your organization’s devices. So, let’s dive in and learn how to create this valuable report!

Intune Wave Deployment: Create Smart Device Groups

19. February 20235. May 2026 jannikreinhard12 Comments

How do you distribute configuration profile, apps or other configurations in Intune today? In this blog I want to explain and provide a script how you can easily roll out objects in Intune using waves. Here I will help you to create groups defined by you that will pack a specified percentage of your devices into the groups so that you can perform a slow rollout and thus guarantee the quality. The current script describes how you can create device groups. When you validate these rollout waves, it can also be helpful to get assignments of a device via PowerShell. If you are also interested in how to apply this to user groups or how to create a automation for the assignment, check out my new version of the Intune group assignment script.

Intune device groups for phased configuration deployment

How to Export Intune Assignment Errors with PowerShell

5. February 20235. May 2026 jannikreinhard

Welcome to my first blog as a Microsoft MVP! This blog will focus on a script I created in response to a request from a member of the community who asked how to efficiently export all errors in Intune. Instead of manually sifting through numerous reports to find errors, my script automates the process with just one click, similar to how I used the Graph Report API for Intune mass exports in a previous post. Not only does this make the task much more convenient, but it also allows you to run the script regularly to create a historical record or receive weekly error reports automatically, or use a similar approach like my Teams notification for the Top 5 apps with installation errors. Since this request can be helpful for several people within the community, I decided to create the script and blog about it.

PowerShell script exporting Intune assignment errors to CSV

Enable Passwordless Authentication with Microsoft Authenticator

4. September 20225. May 2026 jannikreinhard

The best password is the password that is not needed. Statistics show that the more often you have to change the password, the more insecure it becomes. Users write down the password or simply increment it. How about a possibility that is secure but does not require a password, as one part of a broader Ultimate MEM Tour endpoint security guide strategy. In this blog I want to show you how easy it is to enable passwordless authentication for your organization.

Microsoft Authenticator passwordless sign-in settings in Azure AD

Create and Fill AAD Group based on an local attributes

Create and Fill an Entra ID Group based on Local Attributes

28. August 20225. May 2026 jannikreinhard5 Comments

There is often the need to create a Microsoft Entra ID (formerly Azure AD) group based on a local registry key or another attribute to make more specific access decisions, to use this group for access rights to an application or many other use cases. In this blog post I will show you how to do this with the help of Endpoint Analytics and Azure Automation. In my blog I show you how to do this with the example of device manufacturer; of course we already have this info in Intune, but it is just an example of how this works. Of course you can also do this with anything else you can read out on a client.

Microsoft Intune & AI Insights

Azure — Tutorials & Guides by Jannik Reinhard