Forum Discussion
Intune Remediation schedule
Hi I have a question about remediation and when it runs.
I have a detection and remediation script set up and have a schedule for every hour. When I deploy it how long before the client runs the detection ?
Is it that he client has to pick up the policy first (so once every 8 hours, on restart or logon) ?
If so does it run the detection straight away ?
What does the schedule of 1 hour do ? Does it has run the detection script once, and then continue to run the detection script every hour ?
Thanks
G
OhhAhh Hi, in Microsoft Intune, when you deploy a detection and remediation script, the execution of these scripts depends on both the policy update cycle and the specific schedule you have configured.
When you deploy the detection and remediation script, the client (device) must receive the policy. Typically, devices check in with Intune once every 8 hours, but this can also happen if there is a:
-Reboot
-User sign-in
-Manual synchronization initiated by the user or administrator
When the client receives the policy, it will run the detection script during this policy check. Therefore, the first detection will occur as soon as the client receives the policy.Schedule Interval (in Your Case Every 1 Hour):
The schedule you set (every 1 hour) determines how often the detection script runs after the first policy retrieval.
Once the device has received the policy and run the detection script for the first time, it will continue to run it at the interval you define (every hour in your case).
Therefore, after the initial detection, the script will run every hour and, if necessary, trigger the remediation script based on the detection result.Suppose a device checks in at 8:00 AM and receives the new policy with the detection/remediation script. The detection script runs immediately when the policy is applied.
Detection Script Schedule (Hourly):
After the first run at 8:00 AM, the detection script will run again at 9:00 AM, 10:00 AM, 11:00 AM, and so on, every hour, as long as the device remains online and communicating with Intune.-Policy Check-in: Devices typically check in for new policies every 8 hours unless they are rebooted, logged in, or manually synced.
-Immediate Detection: The detection script runs immediately after the policy is applied.
-Recurring Detection: Once you start the detection script schedule (every hour in your case), it will continue to run the script at regular intervals.
1 Reply
OhhAhh Hi, in Microsoft Intune, when you deploy a detection and remediation script, the execution of these scripts depends on both the policy update cycle and the specific schedule you have configured.
When you deploy the detection and remediation script, the client (device) must receive the policy. Typically, devices check in with Intune once every 8 hours, but this can also happen if there is a:
-Reboot
-User sign-in
-Manual synchronization initiated by the user or administrator
When the client receives the policy, it will run the detection script during this policy check. Therefore, the first detection will occur as soon as the client receives the policy.Schedule Interval (in Your Case Every 1 Hour):
The schedule you set (every 1 hour) determines how often the detection script runs after the first policy retrieval.
Once the device has received the policy and run the detection script for the first time, it will continue to run it at the interval you define (every hour in your case).
Therefore, after the initial detection, the script will run every hour and, if necessary, trigger the remediation script based on the detection result.Suppose a device checks in at 8:00 AM and receives the new policy with the detection/remediation script. The detection script runs immediately when the policy is applied.
Detection Script Schedule (Hourly):
After the first run at 8:00 AM, the detection script will run again at 9:00 AM, 10:00 AM, 11:00 AM, and so on, every hour, as long as the device remains online and communicating with Intune.-Policy Check-in: Devices typically check in for new policies every 8 hours unless they are rebooted, logged in, or manually synced.
-Immediate Detection: The detection script runs immediately after the policy is applied.
-Recurring Detection: Once you start the detection script schedule (every hour in your case), it will continue to run the script at regular intervals.