Forum Discussion

skythrock's avatar
skythrock
Copper Contributor
Aug 09, 2022

Create dynamic device group based off of which user enrolled the device

Is there a way to create a dynamic device group based off of which user enrolled the device? For example, I have an admin account that enrolled a bunch of kiosk machines, and I want the group to cons...
  • Mr_Helaas's avatar
    Aug 20, 2022

    Hi skythrock,

     

    From my understanding, it wasn't possible to create a dynamic group based on which users enrolled the device into Azure AD. But I did some research via the Graph API and I have found a solution. And that the physicalIds field in Azure AD contains USER-GID information. So this means that you can build a dynamic query on that.

     
    The only thing you need is the ID of your admin account. So go to Azure AD -> Users -> Admin account-> Copy userid from address bar

     

    So, you have all the needed information and you use create a dynamic group with the following Dynamic query and you will get all Azure AD devices that have been enrolled with your admin account. 

    device.devicePhysicalIDs -any _ -contains "[USER-HWID]: <ID of your Admin account> "

     

    OR 

     

     

    device.devicePhysicalIDs -any _ -contains "[USER-GID]:<ID of your Admin account>"

     

     

     

    Hopefully, this will help you.

     

    Kind regards,

     

    Rene

Resources