Change Enrolled User

%3CLINGO-SUB%20id%3D%22lingo-sub-364166%22%20slang%3D%22en-US%22%3EChange%20Enrolled%20User%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-364166%22%20slang%3D%22en-US%22%3E%3CP%3EHi%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWe%20currently%20have%20a%26nbsp%3B%20Windows%2010%20Desktop%20Device%26nbsp%3BEnrolled%20in%20Intune%20that%20was%20enrolled%20by%20a%20user%20that%20is%20not%20exists%20anymore.%20Therefore%20the%20device%20is%20now%20marked%20as%20non-compliant%20by%20the%20built-in%20compliancy%20policy%20because%20of%20the%20%22Enrolled%20user%20exists%22%20check.%20How%20can%20we%20change%20the%20Enrolled%20User%20without%20re-installing%20the%20device%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20tried%20to%20change%20the%20Registered%20User%20and%20Owner%20with%26nbsp%3BAdd-AzureADDeviceRegisteredOwner%26nbsp%3Band%26nbsp%3BAdd-AzureADDeviceRegisteredUser%2C%20but%20this%20is%20not%20working%20as%20expected.%20Is%20there%20another%20way%20to%20achieve%20this%20or%20do%20we%20need%20to%20re-enroll%20the%20device%3F%20If%20the%20answer%20is%20yes%2C%20what%20is%20the%20best%20way%3F%20Initiate%20a%20Fresh%20Start%20or%20AutoPilot%20Reset%20(Preview)%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThanks%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-364166%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EIntune%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-401019%22%20slang%3D%22en-US%22%3ERe%3A%20Change%20Enrolled%20User%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-401019%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F31473%22%20target%3D%22_blank%22%3E%40Angelo%20Lelieveld%3C%2FA%3E%26nbsp%3BThe%20enrollment%20user%20is%20the%20device%20owner%20in%20intune.%20AAD%20owner%20doesn't%20have%20any%20impact%20on%20the%20Intune%20side.%20Intune%20device%20belongs%20to%20the%20enrollment%20owner.%20If%20you%20want%20to%20change%20that%20you%20must%20do%20a%20factory%20reset.%20Fresh%20start%20is%20not%20necessary%20as%20this%20will%20try%20to%20remove%20bloatware%20as%20well.%20as%20long%20as%20you%20have%20signature%20edition%20or%20provisioning%20ready%20Windows%2010%20devices%20you%20shuld%20be%20fine%20with%20a%20factory%20reset%20and%20the%20new%20user%20enroll's%20the%20device%20and%20will%20be%20the%20new%20onwer%20in%20Intune.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-397259%22%20slang%3D%22en-US%22%3ERe%3A%20Change%20Enrolled%20User%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-397259%22%20slang%3D%22en-US%22%3EFor%20Remote_%20You%20can%20use%20Autopilot%20Reset%20(preview)%3CBR%20%2F%3EOn-site%3A%20You%20find%20the%20device%20inside%20intune%20press%20%22delete%22%20and%20use%20following%20with%20%22other%20user%22%20inside%20windows%20%26gt%3B%20Settings%20%26gt%3B%20Recovery%20%26gt%3B%20Remove%20Everything.%3C%2FLINGO-BODY%3E
Angelo Lelieveld
Occasional Contributor

Hi,

 

We currently have a  Windows 10 Desktop Device Enrolled in Intune that was enrolled by a user that is not exists anymore. Therefore the device is now marked as non-compliant by the built-in compliancy policy because of the "Enrolled user exists" check. How can we change the Enrolled User without re-installing the device?

 

I tried to change the Registered User and Owner with Add-AzureADDeviceRegisteredOwner and Add-AzureADDeviceRegisteredUser, but this is not working as expected. Is there another way to achieve this or do we need to re-enroll the device? If the answer is yes, what is the best way? Initiate a Fresh Start or AutoPilot Reset (Preview)?

 

Thanks

 

2 Replies
For Remote_ You can use Autopilot Reset (preview)
On-site: You find the device inside intune press "delete" and use following with "other user" inside windows > Settings > Recovery > Remove Everything.

@Angelo Lelieveld The enrollment user is the device owner in intune. AAD owner doesn't have any impact on the Intune side. Intune device belongs to the enrollment owner. If you want to change that you must do a factory reset. Fresh start is not necessary as this will try to remove bloatware as well. as long as you have signature edition or provisioning ready Windows 10 devices you shuld be fine with a factory reset and the new user enroll's the device and will be the new onwer in Intune.

Related Conversations
Extentions Synchronization
Deleted in Discussions on
3 Replies
Tabs and Dark Mode
cjc2112 in Discussions on
36 Replies
flashing a white screen while open new tab
Deleted in Discussions on
14 Replies
Stable version of Edge insider browser
HotCakeX in Discussions on
35 Replies
Security Community Webinars
Valon_Kolica in Security, Privacy & Compliance on
9 Replies