Skip to content
a scripting method for Intune PowerShell to be run repeatedly when Intune Management Extension reloads
Branch: master
Clone or download
Latest commit 3a14073 Jun 11, 2019
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
.gitattributes Initial commit Jun 11, 2019
LICENSE Initial commit Jun 11, 2019
README.md Update README.md Jun 11, 2019
forgetMeMethod.ps1 text change Jun 11, 2019
forgetMeMethod_with_user_exec.ps1 text change Jun 11, 2019

README.md

The forgetMeMethod for running Intune PowerShell scripts repeatedly

A.K.A the Obi-Wan Method

This Proof-of-Concept script will always be run by Intune Management Extension, not just once - but "forever". This means, that every time Intune Management Extension runs, it will think it needs to run this script again. The interval is officially every hour, but I have seen it run every 30 minutes once in a while.

The benefit of this method is also that the last success or failure is logged in the Intune portal.

Testing

Just add this script as a PowerShell Configuration Policy through Intune. (Remember to enable 64bit) Assign the script to a test user. Log the test user into his/hers device. wait for IME to execute, or restart IME service and wait a minute. you should see some files called forgetMe*.txt in the c:\windows\temp folder.

Requirements:

  • Designed to be run in system context (so not as the user).
  • Should be run in 64Bit mode, as the script will delete a registry entry in the 64bit registry.

Files

forgetMeMethod.ps1

  • PoC that this can be done, modify to suit your needs (you might want to cleanup some of the temp files it makes to prove it works)

forgetMeMethod_with_user_exec.ps1

  • PoC that we can also make this execute certain things as the user currently logged on to the system, even though we have to run this in SYSTEM context to trick IME into running this script again and again and...
You can’t perform that action at this time.