Apps - Jannik Reinhard

Intune Wave Deployment: Create Smart Device Groups

19. February 20235. May 2026 jannikreinhard12 Comments

How do you distribute configuration profile, apps or other configurations in Intune today? In this blog I want to explain and provide a script how you can easily roll out objects in Intune using waves. Here I will help you to create groups defined by you that will pack a specified percentage of your devices into the groups so that you can perform a slow rollout and thus guarantee the quality. The current script describes how you can create device groups. When you validate these rollout waves, it can also be helpful to get assignments of a device via PowerShell. If you are also interested in how to apply this to user groups or how to create a automation for the assignment, check out my new version of the Intune group assignment script.

Intune device groups for phased configuration deployment

How to Export Intune Assignment Errors with PowerShell

5. February 20235. May 2026 jannikreinhard

Welcome to my first blog as a Microsoft MVP! This blog will focus on a script I created in response to a request from a member of the community who asked how to efficiently export all errors in Intune. Instead of manually sifting through numerous reports to find errors, my script automates the process with just one click, similar to how I used the Graph Report API for Intune mass exports in a previous post. Not only does this make the task much more convenient, but it also allows you to run the script regularly to create a historical record or receive weekly error reports automatically, or use a similar approach like my Teams notification for the Top 5 apps with installation errors. Since this request can be helpful for several people within the community, I decided to create the script and blog about it.

PowerShell script exporting Intune assignment errors to CSV

Do you already know Intune scope tags?

22. January 20235. May 2026 jannikreinhard

Intune scope tags allow you to manage a large organization’s IT infrastructure while giving each department/region/sub company/… the flexibility to configure their own settings. Scope tags in Microsoft Intune allow administrators to divide devices in their organization into logical groups. These groups, also known as tags, can be used to make certain settings, applications, and policies available only to specific users or devices. By using Intune scope tags, you can streamline your IT infrastructure, improve security and make your life easier.

Intune Quick Start Guide

8. January 20235. May 2026 jannikreinhard

Remote working is the new normal and this is exactly what has contributed to the spread of Intune. Intune gets a large number of new users/devices every day and is also being developed at a rapid pace. Intune is an extremely good platform to manage devices regardless of their location and offers the great advantage that you no longer have to worry about an infrastructure as with Config Manager. However, this growth brings the challenge that administrators have to get used to a new platform.

In my blog you will find many deep dives or useful tools and solutions how to get the full power out of Intune. In this blog post I want to go back to the beginning. I want to give you a general overview of what Intune is and provide you with a free QuickStart guide for the first steps.

The new multiple administrative approvals (MAAs)

18. December 20225. May 2026 jannikreinhard

Are you looking to add an extra layer of security to your device configurations in Microsoft Intune? The new multiple administrative approvals (MAAs) feature, introduced in the November 2211 service release, may be just what you need. In this blog post, we’ll walk you through the process of setting up and using MAAs to protect specific configurations like apps or scripts for devices. Multiple administrative approval (MAA) helps to protect in large environments with many administrators by requiring a second administrative account to approve changes before they are applied.

Currently in public preview, you can try out this new feature in your Intune tenant and provide feedback to Microsoft. Keep an eye out for updates on the general availability of MAAs, which will be announced by Microsoft in the near future.

Deploy Windows Store Apps via Intune

11. December 20225. May 2026 jannikreinhard1 Comment

This blog post is my take about how to install Windows Store Application via Intune. This feature makes it much easier to deploy apps via Intune. Intune provides all apps that are available in the winget repository and you can easily select them via a very large software catalog in Intune. This saves the cumbersome packaging of apps. In this blog post we will have an look how you can use this nice feature.

Intune mass export with the Graph Report API

27. November 20225. May 2026 jannikreinhard3 Comments

There are many ways to export information from Intune. For example, you can use Log Analytics, the Data Warehouse or the Graph API. But if you want to export several thousand devices or apps via Graph, it can happen that Graph has a paging. Paging means that you only get a certain number of entries with one call and then you have to make another call for the next range. This means for you that you have to write a script that loops through the pages.

Another problem if you want to export e.g. all Discovered apps you have to loop through all devices because this attribute is not shared in list calls. But if you have several 10k or 100k devices this takes a long time.

But there is a Graph Report API that is designed to export large amounts of data and provide it to you as a CSV in a really easy way. How you can use it I will explain in this blog.

How to skip the ESP for a single app installation

2. October 20225. May 2026 jannikreinhard

Unfortunately, there is no setting in Intune with which you can determine whether an app should be installed during ESP (Enrollment Status Page) or only after ESP. Of course, it is a huge advantage to install as many apps as possible during the ESP or even better during the white glove phase so that you have a ready to use device after enrollment. But there are cases where it can make sense to install an app after the ESP, for example if the installation routine requires an interaction. How you can skip the installation of an app in the ESP I will explain now.

Send Teams Alerts for Top 5 Intune App Install Errors

21. August 20225. May 2026 jannikreinhard

It is always important as an Intune admin to have an overview of the environment. Intune offers a lot of reports but as we all know you don’t look into them every day. Isn’t it easier to get a daily or weekly message in Teams and see the top failed app installations. I have already released some blogs with the topic of detecting anomalies in Intune with the help of cognitive services. In this blog I want to show you how to send a report that is already available in Intune to Teams using Azure Automation.

Teams notification showing top five app installation errors

Detect Intune App Installation Anomalies with Azure AI

24. July 20225. May 2026 jannikreinhard

In one of my previous blog posts I explained how you can use Azure Automation and Azure Cognitive Services (now Azure AI Services) to monitor the compliance state of your environment and notify you if there are major deviations. In this part of the series I want to show you how you can apply this to the deployment of your applications and also get notified if the installation of an application suddenly fails abnormally often.

Microsoft Intune & AI Insights

Apps — Articles by Jannik Reinhard