Forum Discussion
Stephen Bell
Jun 11, 2018Iron Contributor
Quarantined Mobile Devices - Powershell
Hey Everyone -- I am trying to put together a Powershell script to approve a device that has been quarantined. By default, we quarantine everything and allow only what we want. $MobileDevice = ...
Jun 16, 2018
Have you checked the ActiveSyncOrganizationSettings for your tenant using Get-ActiveSyncOrganizationSettings?
What's the DefaultAccessLevel?
Are there any Intune policies in use?
Cheers,
Thomas
Stephen Bell
Jun 17, 2018Iron Contributor
Default Access Level = Quarantine.
We moved to Exchange Online in 2016. From day 1, we have had this policy - all mobile devices get Quarantined until approved by administrator. All of the mobile devices that we have allowed have been allowed manually. When we approve a device manaually (from the Mobile page) - the device is approved and removed from that list.
I am just looking to do the same thing - but with Powershell. Should involve less clicks, pages, and waiting for things to load.
We don't currently have any intune policies in place.
- Jun 18, 2018
The device state is stored in an Active Directory attribute which needs to be replicated across all domain controllers until the state is properly returned when queried by a Get-MobileDevice cmdlet.
Is the device shown in the list of quarantined devices still? Even after some hours after the device has been allowed?
- Stephen BellJun 18, 2018Iron Contributor
Tom,
Thanks for getting back. Yes - it still is showing in the list of Quarantined devices.
I am running Exchange Hybrid - 100% online. I have 1 server on prem for management. Given that, mobile device information would not be stored in my on-prem AD, correct?
-Steve
- Jun 18, 2018
Stephen,
That's correct. Registered mobile devices for cloud mailbox users are not stored in an on-premises AD. The device information is stored in the Office 365.
It seems to be a glitch in the UI, when mailbox access works for allowed device and the device still shows up as quarantined in the Admin Center.
- Thomas