Share via

Policy Intune MDM

Federico Ciampi - ReeVo 0 Reputation points
2024-07-12T12:09:08.98+00:00

Hi all,

is there any way to display all the policies applied to a PC joined to EntraID with active intune?

What I am looking for is kind of what used to be done with the gpresult /h command when the pc is joined to a local AD

Thanks

Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
5,108 questions

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. glebgreenspan 2,235 Reputation points
    2024-07-12T13:31:14.3466667+00:00

    Hello Federico

    In Intune, you can use the "Device configuration" feature to view the policies applied to a device. Here are the steps:

    1. Go to the Microsoft Endpoint Manager (MEM) portal and sign in with your credentials.
    2. Navigate to the "Devices" tab and select the device you want to view policies for.
    3. Click on the "Device configuration" tab.
    4. Scroll down to the "Configuration policies" section.
    5. Click on the "Edit" button next to "Configuration policies".
    6. This will take you to a list of all the policies applied to the device.

    You can also use the Azure portal to view device configuration:

    1. Sign in to the Azure portal (https://portal.azure.com/) with your credentials.
    2. Navigate to "Azure Active Directory" > "Devices" > "Devices" (in the left-hand menu).
    3. Select the device you want to view policies for.
    4. Click on the "Overview" tab.
    5. Scroll down to the "Configuration policies" section.
    6. Click on the "View details" button next to "Configuration policies".
    7. This will show you a list of all the policies applied to the device.

    You can also use PowerShell to retrieve device configuration using the Get-IntunePolicy cmdlet:

    CopyConnect-AzureADGet-IntunePolicy -Device <DeviceId>

    Replace <DeviceId> with the ID of the device you want to retrieve policy information for.

    Note: The Get-IntunePolicy cmdlet only returns policies that are applied through Intune, not local group policy or other non-Intune sources.

    As for getting a similar output to what you would get with gpresult /h, you can use the following PowerShell command:

    CopyGet-IntunePolicy -Device <DeviceId> | ConvertTo-Html -Fragment | Out-File -FilePath C:\path\to\file.html

    This will generate an HTML file that shows a table with all the applied policies, similar to what you would get with gpresult /h.In Intune, you can use the "Device configuration" feature to view the policies applied to a device. Here are the steps:

    1. Go to the Microsoft Endpoint Manager (MEM) portal and sign in with your credentials.
    2. Navigate to the "Devices" tab and select the device you want to view policies for.
    3. Click on the "Device configuration" tab.
    4. Scroll down to the "Configuration policies" section.
    5. Click on the "Edit" button next to "Configuration policies".
    6. This will take you to a list of all the policies applied to the device.

    You can also use the Azure portal to view device configuration:

    1. Sign in to the Azure portal (https://portal.azure.com/) with your credentials.
    2. Navigate to "Azure Active Directory" > "Devices" > "Devices" (in the left-hand menu).
    3. Select the device you want to view policies for.
    4. Click on the "Overview" tab.
    5. Scroll down to the "Configuration policies" section.
    6. Click on the "View details" button next to "Configuration policies".
    7. This will show you a list of all the policies applied to the device.

    You can also use PowerShell to retrieve device configuration using the Get-IntunePolicy cmdlet:

    CopyConnect-AzureADGet-IntunePolicy -Device <DeviceId>

    Replace <DeviceId> with the ID of the device you want to retrieve policy information for.

    Note: The Get-IntunePolicy cmdlet only returns policies that are applied through Intune, not local group policy or other non-Intune sources.

    As for getting a similar output to what you would get with gpresult /h, you can use the following PowerShell command:

    CopyGet-IntunePolicy -Device <DeviceId> | ConvertTo-Html -Fragment | Out-File -FilePath C:\path\to\file.html

    This will generate an HTML file that shows a table with all the applied policies, similar to what you would get with gpresult /h.

    0 comments
  2. Crystal-MSFT 48,851 Reputation points Microsoft Vendor
    2024-07-15T01:25:02.0533333+00:00

    @Federico Ciampi - ReeVo, Thanks for posting in Q&A. To check the policies applied to one PC, just as glebgreenspan said, you can go to Devices>All devices>Find the PC you want to check. Check all the configuration policies on the device, we can click "Device Configuration", check all the compliance policies on the device, we can click "Device Compliance"

    User's image

    Hope the above information can help

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.