Share via

Intune Dynamic Group Issue

Bonus12 1,126 Reputation points
2023-08-10T19:53:09.3566667+00:00

Hi,

I created a Dynamic group for Autopilot that query devices that has a specific tag.

(device.devicePhysicalIds -any (_ -eq "[OrderID]:Autopilot"))

When I refresh my group, I see it adds two computer objects for the same H.W ID. that might be a problem but the main problem is, once I remove the tag from the Device I assume my computer should be removed from the dynamic group. yes and no. One object is only is being removed , the other one is still there.

what is going on? is the problem the duplicated computer objects? why that is happening?

Microsoft Security | Intune | Configuration
Microsoft Security | Intune | Enrollment
Windows for business | Windows Client for IT Pros | User experience | Other
Microsoft Security | Intune | Other
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Syed Shiraz Shahid 290 Reputation points
    2023-08-10T20:06:45.5433333+00:00

    The behavior you're describing might be due to the way Azure Intune handles device records and dynamic group membership. Let's break down the situation and address your concerns:

    1. Duplicate Computer Objects.

    Dynamic Group Membership: Azure Intune dynamic groups evaluate membership based on the defined criteria (in your case, the tag [OrderID]:Autopilot), and the membership updates periodically. When you remove a tag from a device, Intune should evaluate this change during its next membership update cycle and remove the device from the dynamic group.

    However, the presence of duplicate device records might be causing unexpected behavior:

    • Only One Object Being Removed

    To troubleshoot this issue check:

    1. Duplicate Device Records
    2. Membership Evaluation
    3. Intune Service Health
    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.