The following snippet in the InvokeDeviceActions.ps1 script currently locks all devices for the UPN it is ran against:

Write-Host

Write-Host "Checking if the user" $User.displayName "has any devices assigned..." -ForegroundColor DarkCyan

$Devices = Get-AADUserDevices -UserID $id

####################################################

Invoke-DeviceAction

####################################################

if($Devices){

$DeviceCount = $Devices.count

Write-Host "User has $DeviceCount devices added to Intune..."

if($Devices.id.count -gt 1){



write-host "Looping through devices..."



    foreach($Device in $Devices){



    write-host "User" $User.userPrincipalName "has device" $Device.deviceName

    **## Invoke-DeviceAction -DeviceID $Device.id -RemoteLock -Verbose** This should be commented out!
    #Invoke-DeviceAction -DeviceID $Device.id -Retire -Verbose

    #Invoke-DeviceAction -DeviceID $Device.id -Wipe -Verbose



    }



}

Receive bad request error when running the following script.
I am able to pull the first Managed App Policy, Fails at Managed App Policy - Mobile Apps

Error Message:
Get-ManagedAppsPolicyMobileApps : Request to https://graph.microsoft.com/Beta/deviceAppManagemetn/iosManagedAppProtections('####################')/?$Expand=mobileAppIdentifierDeployments failed with HTTP Status
BadRequest

Get-ManagedAppPolicyMobileApps -id $ManagedAppPolicy.id - ...

•         ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  

  • CategoryInfo : NotSpecified: (:) [Write-Error], WriteErrorException
  • FullyQualifiedErrorId : Microsoft.PowerShell.Commands.WriteErrorException,Get-ManagedAppPolicyMobileApps
    bileApps

I thought this would be pretty straight forward but I'm not very experienced with PS so hoping someone can assist.

Goal: Read a list of device ids from CSV file and issue Intune device retire and delete commands for each device ID hopefully without having to answer YES to "Are you sure.." prompt for each device.

$DeviceID = Import-Csv "C:temp\testremove.csv"
foreach ($DevID in $DeviceID)
{
Invoke-DeviceAction -DeviceID $DevID -Retire
Invoke-DeviceAction -DeviceID $DevID -Delete
}
#>

How would I retrieve the deviceActionResults? When I pull in the list of devices in my instance, the deviceActionResult always shows as {} and there is no data, even if the device is showing as retirement pending in the Azure portal. it shpows as being a system.object[], so I tried to see if I could access it directly like this:

$deviceid = "somedeviceid"
$uri = "https://graph.microsoft.com/v1.0/deviceManagement/manageddevices('$DeviceID')?`$select=deviceActionResults"
$result = Invoke-RestMethod -Uri $uri –Headers $authToken –Method Get
$result.deviceActionResults

But all I get there is the same null value. I'm working on cleanup scripts to remove stale devices, and I want to check if they are in a retire pending state and if possible when that was initiated, but can't seem to figure out how to retrieve that.

There are 1173 devices in the tenant I am running ManagedDevices_Get.ps1 against, but only 1000 is returned by the script. Is there any restrictions on how many can be retrieved? If so, how can we override this to return all devices?

The scripts provided are still using the beta endpoint of Graph API, it seems that now all endpoints for deviceManagement are available in v1.0, so it might be better to update the script to reflect that.

I guess that would make people more confident to use these scripts in production.

We have tried using two of the scripts provided, but hit issues with both of them. Firstly, we have tried running ManagedDeviceOverview_Get.ps1 which gets to a certain point, errors and then does not continue. is there a way to get the script to continue on error?

So we also tried ManagedDevices_Hardware_Get.ps1, but that only returns 1000 devices out of closer to 2000. Any ideas how we can export more than 1000?

Hi
Thanks for the new samble script awsome work , 🥇
but when i use Upload-AndroidLob and i look from the azure portal the

Version code displays the version version name and the version code is an empty field.

I am using the android sdk

We look forward to have a patch exitsting lob app ps script sample 🔢

Best regards from

Ibrahim

I know this is not an issue. but i have tried to port this to my C# MVC project, and can't seem to get it to work.
On the fileCommit action it returns commitFileFailed without any reasons.
Would it be possible to also create samples in C#? Can't seem to find any documentation with C# as language..

Hey, when trying to delete a device from intune through invoke-deviceaction got a bad request error:

Invoke-DeviceAction -DeviceID b05dcb23-0a67-4971-864d-59981906640d -Delete
 
WARNUNG: A deletion of a device will only work if the device has already had a retire or wipe request sent to the device...
 
Are you sure you want to delete this device? Y or N?
y
Response content:
{
  "error": {
    "code": "BadRequest",
    "message": "{\r\n  \"_version\": 3,\r\n  \"Message\": \"An error has occurred - Operation ID (for customer support): 00000000-0000-0000-0000-000000
000000 - Activity ID: 5e320693-d3c9-466c-9767-05e65fd74269 - Url: https://fef.amsub0102.manage.microsoft.com/DeviceFE/StatelessDeviceFEService/deviceMa
nagement/managedDevices%28%27b05dcb23-0a67-4971-864d-59981906640d%27%29?api-version=5018-03-23\",\r\n  \"CustomApiErrorPhrase\": \"\",\r\n  \"RetryAfte
r\": null,\r\n  \"ErrorSourceService\": \"\",\r\n  \"HttpHeaders\": \"{}\"\r\n}",
    "innerError": {
      "request-id": "5e320693-d3c9-466c-9767-05e65fd74269",
      "date": "2018-05-24T14:24:43"
    }
  }
}
Invoke-DeviceAction : Request to https://graph.microsoft.com/Beta/deviceManagement/managedDevices('b05dcb23-0a67-4971-864d-59981906640d') failed with 
HTTP Status BadRequest Bad Request
In Zeile:1 Zeichen:1
+ Invoke-DeviceAction -DeviceID b05dcb23-0a67-4971-864d-59981906640d -D ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    + CategoryInfo          : NotSpecified: (:) [Write-Error], WriteErrorException
    + FullyQualifiedErrorId : Microsoft.PowerShell.Commands.WriteErrorException,Invoke-DeviceAction

Publishing Microsoft Outlook - email and calendar

You cannot call a method on a null-valued expression.
At C:\Temp\IntunePS\powershell-intune-samples-master\Applications\Application_iOS_Add.ps1:340 char:5

• $errorResponse = $ex.Response.GetResponseStream()
  

• ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  

  • CategoryInfo : InvalidOperation: (:) [], RuntimeException
  • FullyQualifiedErrorId : InvokeMethodOnNull

Hi,

ManagedDeviceOwnership_Set.ps1 doesn't seem to be returning any Devices.

When I run ManagedDevice_Get.ps1 I am only able to see a handful devices even though I have 200+ that I can see in my Intune Azure Portal.

Ultimately, I was trying to troubleshoot why Invoke_DeviceAction_Set.ps1 was returning that the user I've inputted "do not have any owned devices". I've also tried inputting users that are returned when I run ManagedDevice_Get.ps1 but it still seems to have no effect.

I've also tried -IncludeEAS with no change in results.

hi Guys,

When I try and run the script below I am getting the below error and idea which

• Install AzureAD module -check
• Connected to Azure AD- check
• changed directory to script location- check
• running PS session as admin\unrestricted-check

which is it not responding?

PS C:\windows\Scripts> .\powershell-intune-samples-master\checkstatus\Check_enrolledDateTime.ps1

Please specify your user principal name for Azure Authentication: ********

Checking for AzureAD module...
Checking if any Intune Managed Device Enrolled Date is within or equal to 1440 minutes...

Minutes Ago: 2017-12-12T10:44:20Z

Response content:
{
"error": {
"code": "UnknownError",
"message": "{"Message":"An internal server error has occurred - Operation ID (for customer support): 00000000-0000-000
0-0000-000000000000 - Activity ID: 7d5225ad-4733-4c8b-be6b-478fabb6f553 - Url: https://fef.msub03.manage.microsoft.com/Device
FE/StatelessDeviceFEService/managedDevices?api-version=5017-09-07&$filter=enrolledDateTime+ge+2017-12-12T10%3a44%3a20Z - Cust
omApiErrorPhrase: "}",
"innerError": {
"request-id": "7d5225ad-4733-4c8b-be6b-478fabb6f553",
"date": "2017-12-13T10:43:18"
}
}
}
C:\windows\Scripts\powershell-intune-samples-master\checkstatus\Check_enrolledDateTime.ps1 : Request to
https://graph.microsoft.com/beta/managedDevices?$filter=enrolledDateTime ge 2017-12-12T10:44:20Z failed with HTTP Status
InternalServerError Internal Server Error
At line:1 char:1

• .\powershell-intune-samples-master\checkstatus\Check_enrolledDateTime ...

•   + CategoryInfo          : NotSpecified: (:) [Write-Error], WriteErrorException
    + FullyQualifiedErrorId : Microsoft.PowerShell.Commands.WriteErrorException,Check_enrolledDateTime.ps1
  
  
  
  

PS C:\windows\Scripts> .\powershell-intune-samples-master\CheckStatus\Check_lastSyncDateTime.ps1

Checking to see if there are devices that haven't synced in the last 30 days...

Response content:
{
"error": {
"code": "UnknownError",
"message": "{"Message":"An internal server error has occurred - Operation ID (for customer support): 00000000-0000-000
0-0000-000000000000 - Activity ID: faadb462-62df-46ac-a4a5-28fe026bde81 - Url: https://fef.msub03.manage.microsoft.com/Device
FE/StatelessDeviceFEService/managedDevices?api-version=5017-09-07&$filter=lastSyncDateTime+ge+2017-11-13T10%3a54%3a04Z - Cust
omApiErrorPhrase: "}",
"innerError": {
"request-id": "faadb462-62df-46ac-a4a5-28fe026bde81",
"date": "2017-12-13T10:53:03"
}
}
}
C:\windows\Scripts\powershell-intune-samples-master\CheckStatus\Check_lastSyncDateTime.ps1 : Request to
https://graph.microsoft.com/beta/managedDevices?$filter=lastSyncDateTime ge 2017-11-13T10:54:04Z failed with HTTP Status
InternalServerError Internal Server Error
At line:1 char:1

• .\powershell-intune-samples-master\CheckStatus\Check_lastSyncDateTime ...

•   + CategoryInfo          : NotSpecified: (:) [Write-Error], WriteErrorException
    + FullyQualifiedErrorId : Microsoft.PowerShell.Commands.WriteErrorException,Check_lastSyncDateTime.ps1
  
  
  

Hi,

Thanks for the script, I think this will be really helpful. However I am getting an issue when running it.

The line in question is - $authResult = $authContext.AcquireTokenAsync($resourceAppIdURI,$clientId,$redirectUri,$platformParameters,$clientId).Result

The error I get is - Cannot find an overload for "AcquireTokenAsync" and the argument count: "5".

I am using Microsoft.IdentityModel.Clients.ActiveDirectory.dll version 3.19.

Any ideas would be really helpful. Also do we think this script will work with an MFA enabled GA account?

Thanks

In https://github.com/microsoftgraph/powershell-intune-samples/blob/master/CheckStatus/Check_lastSyncDateTime.ps1
you sync devices by 'lastSyncDate' using this URI="https://graph.microsoft.com/beta/managedDevices?`$filter=lastSyncDateTime ge $daysago".
But the character ` in front of the query parameter does not allow the request to be executed correctly. This query parameter is simply ignored and you always get all the devices.

Using operators 'gt', 'ge' with dates always gives an empty response (((
It looks like at the moment with the dates correctly works only the operator 'lt'.

Hi guys,
would i be able to ask for a sample code for uploading files in the new Win32 application type to the Intune tenants?
Thanks Steve

Do you have a sample for setting mdmAuthority and the method to set

I see you setting this parameter on the BRK3119

Member | Value | Description

unknown | 0 | Unknown
intune | 1 | Intune
sccm | 2 | SCCM
office365 | 3 | Office365

I'm trying to use the function to add a new assignment to an application with existing assignments. As described, I understood it to append to the existing assignments. Instead, it acts like a Set function and overwrites any previous assignments with just the new groupId passed to the function.

I get the following error trying to run ManagedDevices_Get.ps1

PS C:\Windows\system32> C:\scripts\Getintunedevices.ps1

Please specify your user principal name for Azure Authentication: adrian.higuero
[email protected]

Checking for AzureAD module...
Cannot find an overload for "AcquireTokenAsync" and the argument count: "5".

PS C:\Windows\system32>

Can anyone help?

Scenario: As part of a user offboarding process, there is a need to initiate a remote wipe operation against a managed Intune device from an Azure Automation runbook.

This means we need unattended authentication.

I have setup an application in the Microsoft Application Registration Portal which has been granted the necessary permissions to perform the required API calls, such as the DeviceManagementManagedDevices.PrivilegedOperations.All permissions which is required for initiating a remote wipe action.

However, according to the documentation, a wipe action is not supported from an application.

Does this mean that this action is not possible to perform without an interactive session? Or are there other ways to accomplish this?

Hi Dave,
I have been following your YouTube video where you used this script “Check_LastsynDatetime_v2.2.ps1” to check last sync date and time but was prompted to specific which management agent to check.

1. EAS
2. MDM
3. EASMDM
4. ALL
   And then once the devices were found you were prompted on the next action
   Waning are you sure you want to retire and delete the 3 devices? Y or N?

Can you please share the script

Is it possible to tweak the scripts or add support for access Intune tenants managed through CSP / Delegated Administration?

Is there a way to export Windows 10 polices? Android and iOS work fine. Looking through the script it appears there is nothing written to pull the Win10 policies.

Hello,

Do you already have samples to add a MSI into the Intune Service that you have authenticated with?

Hi,

I try to retire one device with :

Invoke-DeviceAction -DeviceID "myid" -Retire -Verbose

The script return :

COMMENTAIRES : https://graph.microsoft.com/Beta/managedDevices/myid/retire
COMMENTAIRES : Sending retire command to myid
COMMENTAIRES : POST https://graph.microsoft.com/Beta/managedDevices/myid/retire with 0-byte payload
COMMENTAIRES : received 0-byte response of content type text/plain

No byte is sent nor received I do not understand. I do not understand. Can anyone help me?

Cannot find an overload for "AcquireTokenAsync" and the argument count: "5".

This occurs on my machine throughout using every script within the DeviceConfiguration, Authentication AppleEnrollment folder. I am prompted with "Please specify your user principal name for Azure Authentication:" which I would assume is the name of the account you wish to use with Microsoft Azure. (eg. [email protected]). After entering my credentials, I get the error

Checking for AzureAD module... Cannot find an overload for "AcquireTokenAsync" and the argument count: "5".

Versions:
Get-Module AzureAD => Version 2.0.1.16
OS - Win 10.

@davefalkus, So I've seen this issue a couple of times, and somehow resolved.

• I have MFA enabled, and it looks like it's not supported.
• I've used Auth_From_File.ps1 as an example.

The SAS Uri has an expiration time associated with it.
If the file is sufficiently large you may go over the expiration time and receive an error such as:

Response status code does not indicate success: 403 (Server failed to authenticate the request. Make sure the value of Authorization header is formed
correctly including the signature.).

In order to extend the time needed for a large upload or slow upload time the endpoint renewUpload should be called on the content file ala:

https://developer.microsoft.com/en-us/graph/docs/api-reference/v1.0/api/intune_apps_mobileappcontentfile_renewupload

Hello

It seems like the Get-ApplicationAssignment function in Application_MDM_Get.ps1 is not able to find an apps GroupAssignments.

Response content:
{
"error": {
"code": "BadRequest",
"message": "Resource not found for the segment 'groupAssignments'.",
"innerError": {
"request-id": "XXXX",
"date": "2018-02-10T21:24:53"
}
}
}
Get-ApplicationAssignment : Request to https://graph.microsoft.com/Beta/deviceAppManagement/mobileApps/f75daeb6-7ddf-4ee9-bfe1-565abb9f592b/groupAssignments failed with HTTP Status Bad
Request Bad Request
At C:\GitHub\IronstoneIT\powershell-intune-samples\Applications\Application_MDM_Get.ps1:429 char:19

• ... ssignment = Get-ApplicationAssignment -ApplicationId 'XXX...

•             ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  

  • CategoryInfo : NotSpecified: (:) [Write-Error], WriteErrorException
  • FullyQualifiedErrorId : Microsoft.PowerShell.Commands.WriteErrorException,Get-ApplicationAssignment

It would be nice to include samples and scripts for adding LOB apps: https://developer.microsoft.com/en-us/graph/docs/api-reference/beta/resources/intune_apps_mobilelobapp

DeviceConfiguration_Export.ps1 does not support export path with spaces.

When you specify "C:\Path To\Folder" the script fails:

• First by saying folder does not exist, create it for you? Y/n
• Then, fails at creating new folder
• Lastly, every policy it tries to write from Intune to output fails, says output folder does not exist.

If you Reset the passcode. How can you see the new passcode?

Hello guys,
On the new tenant, that has been created recently the Enterprise application called "Microsoft Intune Powershell" (with the client id "d1ddf0e4-d672-4dae-b554-9d5bdfd93547") is missing. How can I add it or make it visible. This exists in the other tenants that I had then for a while. Or, maybe I am missing something...

Thanks in advance for your help

This script will work with PS Core 6.1, but when constructing this path string, you will receive an invalid path as a result of concatenating "\" (backslash) on a *NIX like system.

Possibly using [System.IO.Path]::PathSeparator as a more agnostic approach might be considered?

All these samples are for manual execution, when can we see samples suitable for automation? I've yet to find a good way to setup a script to run as a scheduled task or SCORCH process because the authentication requirements are onerous (i.e., requiring typing into a authorization web form, or doing admin consent again through a webform instead of just pre-provisioning permissions to service accounts). Are we likely to see good documentation related to this anytime soon?

When I run the above script, I only get the first 1000 devices.

$a = .\DeviceConfiguration_Get.ps1 $a.Count 1000

Keep receiving the following error code when attempting to use the solution outlined in Auth_From_File.

Error Message: Authorization Access Token is null, please re-run authentication...

I'm so happy to find these scripts. The ability to export and import into another tenant will be very helpful to me. It will also help us keep our baselines standards accurate.

However, in running the user report script I've receiving an error in two places and I'm not sure what to do about it. Here is the issue.

OS: Windows
OS Version: 10.0.17134.228
EAS Activated: False
EAS DeviceId:
AAD Registered: True
Enrollment Type:
Management State: managed
Compliance State: noncompliant
Invoke-RestMethod : The remote server returned an error: (400) Bad Request.
At C:\Users\AmyBabinchak\OneDrive\Documents\ReportpPolicyApplied.ps1:1175 char:50

• ... cyStates = (Invoke-RestMethod -Uri $uri -Headers $authToken -Method G ...

•             ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  

  • CategoryInfo : InvalidOperation: (System.Net.HttpWebRequest:HttpWebRequest) [Invoke-RestMethod], WebException
  • FullyQualifiedErrorId : WebCmdletWebResponseException,Microsoft.PowerShell.Commands.InvokeRestMethodCommand

and also here

Assigned Compliance Policies:
Response content:
{
"error": {
"code": "BadRequest",
"message": "Resource not found for the segment 'groupAssignments'.",
"innerError": {
"request-id": "09a96327-3093-462b-9476-c715d7f6a213",
"date": "2018-09-04T16:55:27"
}
}
}
Get-DeviceCompliancePolicyAssignment : Request to https://graph.microsoft.com/Beta/deviceManagement/deviceCompliancePolicies/49
3c92c4-01e9-46af-b490-5754cf5ccae7/groupAssignments failed with HTTP Status BadRequest Bad Request
At C:\Users\AmyBabinchak\OneDrive\Documents\ReportpPolicyApplied.ps1:1561 char:13

• $DCPA = Get-DeviceCompliancePolicyAssignment -id $id
  

•         ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  

  • CategoryInfo : NotSpecified: (:) [Write-Error], WriteErrorException
  • FullyQualifiedErrorId : Microsoft.PowerShell.Commands.WriteErrorException,Get-DeviceCompliancePolicyAssignment

No Device Compliance Policies Assigned

I will need some guidance on how to resolve.

Hello

I would like to set Conditionnal Access with Graph, i didnt find the API

Thanks for your Reply

Jean-Yves

Hi ,
I get an error when using the Auth_From_File.ps1 script

Cannot convert argument "ctx", with value: "Microsoft.IdentityModel.Clients.ActiveDirectory.AuthenticationContext", for "AcquireTokenAsync" to type "Microsoft.IdentityModel.Clients.ActiveDire
ctory.AuthenticationContext": "Cannot convert the "Microsoft.IdentityModel.Clients.ActiveDirectory.AuthenticationContext" value of type "Microsoft.IdentityModel.Clients.ActiveDirectory.Authen
ticationContext" to type "Microsoft.IdentityModel.Clients.ActiveDirectory.AuthenticationContext"."

I have been working with this script for a few days now and today it stopped functioning today

I downloaded a fresh zip of the master scripts and ran it an i am still getting the same error. Was there a change that would prevent this from working? Are there going to be many of these changes as i am writing a program that requires this functionality to be persistent without having to modify too greatly.

Thank You

Running Get-AuthToken is failing with this error:

PS C:\Users\SAMUELGRUMMONS>     $authResult = $authContext.AcquireTokenAsync($resourceAppIdURI,$clientId,$redirectUri,$platformParameters,$userId).Result
Cannot find an overload for "AcquireTokenAsync" and the argument count: "5".
At line:1 char:5
+     $authResult = $authContext.AcquireTokenAsync($resourceAppIdURI,$c ...
+     ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    + CategoryInfo          : NotSpecified: (:) [], MethodException
    + FullyQualifiedErrorId : MethodCountCouldNotFindBest

This error was also reported on StackOverload:
https://stackoverflow.com/questions/41132164/acquiretokenasync-not-found-for-auth-context-when-trying-to-get-token

The Invoke_DeviceAction_Set.ps1 script successfully obtains user details, as well as the list of managed devices, but fails for the 'retire' action with the following error:

"code": "BadRequest",
"message": "Resource not found for the segment 'managedDevices'.",

The credentials used for graph api authorization are a global tenant administrator, so it's doubtful that permissions are at issue here.

Thanks!
Tristan

the function returns null result
looks if I run Invoke-RestMethod -Uri https://graph.microsoft.com/beta/deviceManagement/managedDevices -Headers $authToken -Method Get
and the function provides correct output only if use $graphApiVersion = "v1.0"

Graph provide dymanicgroup of Device create ? With query androïd Device

There are 43 instances of � on the blank lines in this file, causing saving or copy/pasting from RAW to provide invalid PowerShell code.

I have a bad feeling some of this is depreceated, but mostly , in a document for setup is this:
$global:profileID - this is the GUID of your DEP profile that you have created in Intune. To get this guid, you must navigate to the Corporate Device Enrollment profile in the Intune portal, and the GUID is located at the end of the URL. Here is an example URL that shows you where the GUID is located:
https://portal.azure.com/#blade/Microsoft_Intune_Enrollment/EditAcProfileBlade/overview/profileId/af897c67-05ac-469f-b6c1-64a9fa41eaea

Specifically, I cannot find editacprofileblade in my tenant, & I am a global admin.
I'm specifically trying ot get this to work :
https://blogs.technet.microsoft.com/smeems/2018/03/07/device-cleanup-with-graph-api/

I've modified it so that it authenticates as user. I know MS added some functionality to intunes, but it doesn't specifiy if their version sends a wipe, or just a retire, so I want to use the CSV function of that first.

getting below message after insert my credential

Authorization Access Token is null, please re-run authentication...

If I mark this line as a comment in the script, I will get below error

Checking for AzureAD module...

Request to https://graph.microsoft.com/Beta/deviceAppManagement/mobileAppCategories failed with HTTP Status 401 Unauthorized
Response content:
{
"error": {
"code": "InvalidAuthenticationToken",
"message": "Bearer access token is empty.",
"innerError": {
"request-id": "f97793aa-6e39-41f4-85b9-96b2cd2c7706",
"date": "2018-06-18T22:17:35"
}
}
}

here is my computer details
Win 2k12 R2 DataCenter, 2.0.1.11 AzureADPreview, 2.0.1.10 AzureAD

I can confirm, all scripts are working fine on Windows 10; I have tested on 2 windows 10 and 2 server 2012. Windows 10 worked fine but not on servers.

any idea?

Hi, in this line:

https://github.com/microsoftgraph/powershell-intune-samples/blob/master/LOB_Application/Application_LOB_Add.ps1#L928

$manifestXML.AndroidManifestProperties.PackageVersionCode = "$identityVersion" # 10

PackageVersionCode should reflect as an integer; in my testing, if this field was something that resembled a string, the application would never appear on an assigned device.

Hi,

I'm trying the run the above script from my PC and I get the following error (note, I have changed the actual username for this post):

Please specify your user principal name for Azure Authentication: [email protected]

Checking for AzureAD module...
AzureAD PowerShell module not found, looking for AzureADPreview
Cannot find an overload for "AcquireTokenAsync" and the argument count: "5".

Current installed modules:

ModuleType Version Name

Binary 2.0.0.154 AzureADPreview
Binary 2.0.0.137 AzureADPreview

If I know which version of the AzureADPreview this script was working with, then I can manually install that.

Here's another listening of the installed modules that I have:

Version Name Repository
2.0.0.155 AzureAD PSGallery
2.0.0.154 AzureADPreview PSGallery
1.3.0 Avanade.AzureAD PSGallery
1.2.2 Avanade.AzureAD.Graph PSGallery

The Operating system is Windows 10 Pro