How To Remotely Autopilot Laptops via -Online switch

Question

I have existing remote laptops that I want to autopilot but how do I submit HWID using the -online which requires intune admin credentials? Is there a Just-in-time permission and/or single use password protected with MFA that can allow user to submit HWID on behalf of company?

My understanding was that "convert all targeted devices to Autopilot" meant the HWID would be submitted automatically for these existing devices. If this is not the case my only roadblock is not having physical access to laptop to enter my intune admin credentials.

I would run sysprep application to trigger oobe

nicklasolsen · Answer

Hi,If I were you, I wouldn't give users administrator rights, and let them upload the hardware hash.I would either extract the hardware hash and upload it, or do it with the -online parameter.Be aware the "Convert all targeted devices to Autopilot" only works for Azure AD joined and registered devices, not hybrid joined devices, as far as I am aware.

micheleariis · Answer

Hi,&nbsp;I agree with what you said&nbsp;NicklasOlsen&nbsp;I for some servicedesk operators created a role to be able to operate on Autopilot that also gives them the ability to load the hash (without having administrative rights)&nbsp;

jeroenburgerhout · Answer

What you can do, is to fire a remote powershell script that collects the hw hash for you and upload to a Azure blob storage account. And than upload the csv's to Autopilot. Or first append them in one csv and than upload.

https://github.com/jaysamthanki/intune/blob/main/Get-Hardwarehash.ps1

Forum Discussion

How To Remotely Autopilot Laptops via -Online switch

Share

Resources