Automation - Jannik Reinhard

Simplify App Management and Patching with Recast

25. January 20255. May 2026 jannikreinhard

When application management works smoothly, everyone benefits: IT teams operate with fewer tickets, security stays tight, and employees remain productive. Yet for many organizations, keeping every device up to date, simplifying deployments for AVD/Citrix images, managing SSO across the environment, and supporting macOS without costly third-party solutions can feel overwhelming. Add in the need to handle custom, complex applications—where 80% of the workload often goes into just 20% of those installs—and application management becomes even more challenging.

Graph Batch Endpoint

28. September 20245. May 2026 jannikreinhard

This is only a small blog post but maybe for most of you very helpful especially if you work a lot with Microsoft Graph. Often the problem is you want to run multiple calls and then you have to loop through the single items or have a long line of calls.

While writing another blog post, I found out that there is a batch endpoint for MS Graph. In this blog, I will show you how you can use it and give you also an example script.

Automate Local Admin Rights Removal with Privilege Manager

29. March 20245. May 2026 jannikreinhard

This is the second guest post from my partner Recast Software.
Imagine reducing 90% of critical security vulnerabilities with a single change to your IT policy. Removing local admin rights can achieve this. IT departments face a constant influx of tickets and issues to manage. Many of these result from a need to elevate permissions, perhaps to update a piece of software or access a resource. The old way of getting around this issue was to give end users local admin permissions on their device. I know many of you are cringing just reading that—so am I. There are many, many reasons not to give end-users local admin permissions. The risks associated with local admin rights greatly outweigh the benefit of fewer tickets from end-users.

V2 – Get an daily device report via email or teams with logic apps – Step by Step guide

V2 – Get a Daily Device Report via Email or Teams with Logic Apps (Step by Step)

28. May 20235. May 2026 jannikreinhard9 Comments

I have already written a blog about how to send a message using Logic apps to generate a regular device report. After a presentation about automation with Intune and Graph I got good feedback if I can do a variant with Co Managed devices. So I decided to write a V2 of this blog and also update the authentication with Managed Identity. If you are interested in more blogs around the topic of logic apps, let me know and I will be happy to do a deep dive on logic apps.

Automate Intune Tasks with Azure Automation Runbooks

9. April 20235. May 2026 jannikreinhard1 Comment

As you all know I am a very very big fan of automation. The good thing is in almost all Microsoft products there are interfaces to do exactly that. This is also the case for Intune. In one of my last blogs I wrote about how to use PowerShell to automate things in Intune. I also mentioned Azure Automation. In this blog I want to go deeper into the topic and explain how you can use Azure Automation to automate recurring processes.

Azure Automation Runbook setup for Intune tasks

How to Export Intune Assignment Errors with PowerShell

5. February 20235. May 2026 jannikreinhard

Welcome to my first blog as a Microsoft MVP! This blog will focus on a script I created in response to a request from a member of the community who asked how to efficiently export all errors in Intune. Instead of manually sifting through numerous reports to find errors, my script automates the process with just one click, similar to how I used the Graph Report API for Intune mass exports in a previous post. Not only does this make the task much more convenient, but it also allows you to run the script regularly to create a historical record or receive weekly error reports automatically, or use a similar approach like my Teams notification for the Top 5 apps with installation errors. Since this request can be helpful for several people within the community, I decided to create the script and blog about it.

PowerShell script exporting Intune assignment errors to CSV

Send Teams Alerts for Top 5 Intune App Install Errors

21. August 20225. May 2026 jannikreinhard

It is always important as an Intune admin to have an overview of the environment. Intune offers a lot of reports but as we all know you don’t look into them every day. Isn’t it easier to get a daily or weekly message in Teams and see the top failed app installations. I have already released some blogs with the topic of detecting anomalies in Intune with the help of cognitive services. In this blog I want to show you how to send a report that is already available in Intune to Teams using Azure Automation.

Teams notification showing top five app installation errors

Automate Intune App Assignment Groups with Azure Runbooks

21. July 20225. May 2026 jannikreinhard

Automatic assignment groups are useful when app deployment should stay consistent without manually creating a new Microsoft Entra group every time an Intune app is added. The pattern works best when group names, app names, and assignment intent follow the same convention.

In production tenants I recommend validating the group creation flow with one pilot application first. Check the created group, verify the Intune assignment, and document the naming rule before you let automation create groups for a larger application catalogue.

When creating a new app in the Intune admin center and not assigning it to AllUsers/AllDevices, this is always some work to create your own group for available/required and uninstall assignments for each app. You know I love automation. To save time and automate this work I will describe in this blog how you can create a runbook that takes this work completely over.

Microsoft Intune & AI Insights

Automation — Articles by Jannik Reinhard