Forum Discussion
What is the procedure to reassign an Intune managed AAD joined Windows 10 device?
So, I tried the Intune "Fresh Start" action and because I did not want to keep anything, I did not check "Retain user data on this device". Once completed, the device came back to the logon screen and looked like nothing happened. Looking in Azure AD, the device could not be found, however it remained in Intune. As expected, it could no longer be managed.
Thinking that (just maybe) it would AutoPilot from the logon screen, I signed in. Without the device being in AAD, I did not expect the singon to work at all, but it did. I looked again in AAD, but the device was not recreated. Curious, I tried an Intune Sync within the Accounts settings, but this failed with an error I did not record.
As this was not the desired result and I was in a hurry, I brute forced the reassignment.
- The device was already deleted from AAD.
- Deleted the device from Intune.
- Performed the "Reset this PC" action, found in Settings > Update & Recovery > Recovery
- Collected the device ID information
- Uploaded the device info to enroll it for AutoPilot
After a little more research, I discovered a new option which might work, Windows Autopilot Reset. This was not available for this particular device, though I do see it on another. Possibly, because the device was running Win 10 v1803. I will have to try this action on a test device.
Had need to reassign a device to a new user and tried the "AutoPilot Reset (preview)". Unfortunately, it did not bring the device back to its AutoPilot ready state, nor remove the former owner from AAD and Intune.
Where I expected the device come up at the OOBE and no longer have an owner, the experience looked like this:
- I searched for the device in Intune and clicked "AutoPilot Reset (preview)". The device displayed a popup that stated that the user should restart the machine to begin the reset process that an administrator had initiated.
- Thinking an administrator should be able to control the whole process, in Intune I tried to force the reboot by clicking "Restart". When the reboot did not begin after nearly 10 minutes, I clicked "Sync". When still nothing happened for another 10 minutes, I manually rebooted the PC and the reset process began.
- When the Reset completed, the machine came back to the normal Windows 10 logon screen, without the former user profiles, but still registered to the former owner.
Until a better solution is found, I plan to delete these devices from AAD, then delete from Intune, re-enroll the device, then run the local system reset. This process will also handle a related problem, when we need to change the Order ID / Group Tag.