Reporting — Articles by Jannik Reinhard

Intune mass export with the Graph Report API

Intune mass export with the Graph Report API

Intune mass export with the Graph Report API

jannikreinhard3 Comments Intune mass export with the Graph Report API

There are many ways to do an Intune mass export of your data. For example, you can use Log Analytics, the Data Warehouse or the Graph API. But if you want to export several thousand devices or apps via Graph, it can happen that Graph has a paging. Paging means that you only get a certain number of entries with one call and then you have to make another call for the next range. This means for you that you have to write a script that loops through the pages.

Another problem if you want to export e.g. all Discovered apps you have to loop through all devices because this attribute is not shared in list calls. But if you have several 10k or 100k devices this takes a long time, which is exactly why an Intune mass export approach saves you so much effort.

But there is a Graph Report API that is designed for an Intune mass export of large amounts of data and provides it to you as a CSV in a really easy way. How you can use this Intune mass export method I will explain in this blog.

Intune mass export with the Graph Report API
Read More » Intune mass export with the Graph Report API
Detect Connected Hardware with Intune Endpoint Analytics

Detect Connected Hardware with Intune Endpoint Analytics

Detect Connected Hardware with Intune Endpoint Analytics

jannikreinhard3 Comments Detect Connected Hardware with Intune Endpoint Analytics

Modern endpoint estates contain a lot more than the laptop itself: docking stations, external monitors, headsets, USB peripherals, and a long tail of business-specific gear. Microsoft Endpoint Analytics gives you the foundation to detect connected hardware across your fleet with a custom data-collection script and feed it into Log Analytics, where you can correlate peripheral inventory with users, locations and refresh cycles. This post walks through the pattern I use to detect connected hardware: a PowerShell collector that reads CIM classes, normalises the result, and posts it into a custom Log Analytics table — ready for Power BI and procurement reporting.

To see which devices are using a particular monitor or keyboard, it can be very helpful if you can collect this information. In this blog I will show you how to detect connected hardware with the help of Endpoint Analytics. You can then use this information to assign a driver to these devices or to trigger a hardware replacement. How you can automatically populate a group based on the output of an endpoint analytics script I explained in create and fill Microsoft Entra ID group based on local attributes.

Behind the scenes the approach builds on the Endpoint Analytics remediations feature in Microsoft Intune, so you do not need any extra agent on the client to detect connected hardware reliably.

Detect connected hardware with Intune Endpoint Analytics dashboard
Read More » Detect Connected Hardware with Intune Endpoint Analytics
Detect Intune App Installation Anomalies with Azure AI

Detect Intune App Installation Anomalies with Azure AI

Detect Intune App Installation Anomalies with Azure AI

jannikreinhard3 Comments Detect Intune App Installation Anomalies with Azure AI

In this guide I will show you how to Detect Intune App Installation Anomalies with Azure AI. In one of my previous blog posts I explained how you can use Azure Automation and Azure Cognitive Services (now Azure AI Services) to monitor the compliance state of your environment and notify you if there are major deviations. In this part of the series I want to apply the same approach to application deployment, so you can Detect Intune App Installation Anomalies and get notified automatically if the installation of an application suddenly fails abnormally often. You can read more about the underlying service in the official Microsoft Learn documentation.

Azure anomaly detector monitoring Intune application installation failures
Read More » Detect Intune App Installation Anomalies with Azure AI
Using MacOS custom attributes in Intune

Using MacOS custom attributes in Intune

Using MacOS custom attributes in Intune

jannikreinhard

This post is a practical guide to using MacOS custom attributes in Intune. MacOS custom attributes in Intune let you collect arbitrary signals from your Macs — anything a shell script can return — and surface them as device properties for compliance, dynamic groups and reporting.

Microsoft Intune’s macOS custom attributes are one of the most underrated features in the platform — a thin slice of “managed Jamf Extension Attributes” that lets you collect arbitrary signals from your Macs (anything you can return from a shell script: hardware identifiers, configuration state, installed apps, security posture) and surface them as device properties for compliance, dynamic groups and reporting. This post walks through the end-to-end workflow: how to write a robust custom-attribute shell script, deploy it via Intune, and consume the result in compliance policies and Microsoft Graph queries.

Intune already has a basic inventory of MacOS devices. On the one hand, there is a hardware inventory in which you have everything from the serial number to the free memory, but also os information. In addition, you can see in the discovered apps which applications are installed on the device. But if you want to collect more information about the devices, Intune offers a really cool feature here. The feature I am talking about is called custom attribute. This is basically a shell script that is executed on the devices and the return value is stored as a custom attribute.

Read More » Using MacOS custom attributes in Intune
Detect anomalies in your Intune environment with Azure Cognitive Services – Part 1 Device Compliance

Detect anomalies in your Intune environment with Azure Cognitive Services – Part 1 Device Compliance

Detect anomalies in your Intune environment with Azure Cognitive Services – Part 1 Device Compliance

jannikreinhard5 Comments Detect anomalies in your Intune environment with Azure Cognitive Services – Part 1 Device Compliance

It is hard to keep track of your Intune environment. In this guide you will learn how to detect anomalies in your Intune environment with the help of log events, where you can build static monitoring via Azure automation or logic apps. This is possible if you are only interested in a specific event or if you can express this via static code. However, if you want to detect anomalies in your Intune environment, e.g.

a strong increase or decrease of the device count or how many devices are compliant, it is difficult to implement this without machine learning and to set static values. In this blog series I would like to show you how you can use Azure Cognitive Services (now Azure AI Services) to build a monitoring system and send you messages based on abnormal deviations. So let’s get started.

Detect anomalies in your Intune environment with Azure Cognitive Services dashboard
Read More » Detect anomalies in your Intune environment with Azure Cognitive Services – Part 1 Device Compliance
Build PowerBi Dashboard based on Intune Data Warehouse

Build PowerBi Dashboard based on Intune Data Warehouse

Build PowerBi Dashboard based on Intune Data Warehouse

jannikreinhard16 Comments Build PowerBi Dashboard based on Intune Data Warehouse

The Intune Data Warehouse provides a treasure trove of structured data that is incredibly useful for building reports. In this guide I will show you exactly how to connect to the Intune Data Warehouse with Power BI, and I will also share a ready-made example dashboard so you can get insights into your environment in minutes instead of days. Whether you manage a handful of devices or thousands, tapping into the Intune Data Warehouse turns raw management data into a clear, actionable picture for your stakeholders.

Power BI dashboard built on the Intune Data Warehouse showing device and app insights
Read More » Build PowerBi Dashboard based on Intune Data Warehouse
Copy Intune Discovered Apps in Log Analytics Workspace

Copy Intune Discovered Apps in Log Analytics Workspace

Copy Intune Discovered Apps in Log Analytics Workspace

jannikreinhard1 Comment Copy Intune Discovered Apps in Log Analytics Workspace

Working with Intune Discovered Apps is one of the easiest ways to understand what is really installed across your fleet. Intune offers the possibility to show per device not only the apps installed via Intune but also the apps discovered on the device (Control Panel apps). Since this view is relatively static and you only have a per device view here, it is difficult to make analyses of the complete environment, e.g.

to see which app is missing in the portfolio, since this is often installed by users themselves. Why don’t we use Log Analytics to have more options to work with this information? In this blog I want to show you how you can copy the Intune Discovered Apps into a workspace easily with a script.

Copy Intune Discovered Apps in Log Analytics Workspace
Intune Discovered Apps inventory in Log Analytics Workspace
Read More » Copy Intune Discovered Apps in Log Analytics Workspace
Daily Intune Device Reports via Logic Apps, Email & Teams

Daily Intune Device Reports via Logic Apps, Email & Teams

Daily Intune Device Reports via Logic Apps, Email & Teams

jannikreinhard

This step-by-step guide shows how to send a daily device report via Logic Apps, email and Teams. The flow combines Microsoft Graph queries, Azure Logic Apps, and your existing Microsoft 365 channels — no third-party reporting tool needed, and the whole pipeline runs on the Azure consumption plan for a few cents per month.

For an Intune admin it is always helpful to get an overview of the current status of their tenant and an overview of the count of devices in the field. In this blog I would like to explain how you can use Logic Apps to send you a detailed daily device report straight to your inbox and Teams channel.

Daily device report flow built with Azure Logic Apps
Azure Logic Apps workflow for daily Intune device report
Read More » Daily Intune Device Reports via Logic Apps, Email & Teams
Get Microsoft Intune Status Reports with PowerShell

Get Microsoft Intune Status Reports with PowerShell

Get Microsoft Intune Status Reports with PowerShell

jannikreinhard

This post is a hands-on guide to generating Intune status with PowerShell — pulling a Microsoft Intune status report without ever opening the Intune admin centre. The script queries Microsoft Graph, builds a structured snapshot of devices, compliance, apps, and assignments, and outputs it as a CSV/JSON ready for further analysis or your own dashboard.

As an administrator, it is always good to keep an eye on your Intune status. In this blog I would like to show you how you can display the current Intune status with PowerShell using a small PowerShell script. The data comes straight from Microsoft Graph, so everything you see in the portal is also available programmatically.

Intune status with PowerShell output shown in a PowerShell window
Read More » Get Microsoft Intune Status Reports with PowerShell
Microsoft Endpoint Manager Reporting: Ultimate MEM Tour Part 4

Ultimate MEM Tour Part 4: Microsoft Intune Reporting

Ultimate MEM Tour Part 4: Microsoft Intune Reporting

jannikreinhard4 Comments Ultimate MEM Tour Part 4: Microsoft Intune Reporting

After we have looked at the three categories of Device Management, Application Management and Endpoint Security, this blog continues with Intune Reporting, the reporting section of Microsoft Intune. Thanks to everyone who read the preceding blogs and gave me feedback. But it’s not over with very powerful and helpful features in Intune. Also in the Intune Reporting section you will find features that can make your daily work easier as an administrator and with which you can greatly increase the user experience. With Endpoint Analytics there is a very powerful Intune Reporting feature which is continuously developed and improved. But let’s take a closer look at it below.

Read More » Ultimate MEM Tour Part 4: Microsoft Intune Reporting