Title: Intune Debug Toolkit Authors: Mattias Melkersen Owner: Mattias Melkersen Date: 01.10.2022 Modified: 01.10.2024 Description: Toolbox to troubleshoot areas of clients managed by Intune

IntuneDebugToolkit

Please go and visit MSEndpointMgr -> solutions -> Intune Debug Toolkit or simply click here! https://msendpointmgr.com/intune-debug-toolkit/

Here is a demo of how I use the Win32 rerun tool. Pssssttt there are a description of all the other tools on the MSEndpointMgr Site! VLOG on how to rerun win32 apps here and now:

History

Version 2.3 (01-10-2024)

• Fixed a bug where Debug Autopilot shortcut didn't launch.
• Updated IntuneDeviceDetailsGUI_2.95 to IntuneDeviceDetailsGUI_3.00.
• Updated advanced troubleshooting to ask for admin privileges.
• Updated SyncMLViewer to latest version 1.3.1.0.
• Added CMTrace for better log tracing.
• Added a new tool to import device to corporate identifier to use with ADE from Rafał Zimonczyk (Read more about the changes here Rafał's GitHub).

Version 2.2 (24-09-2023)

• Updated AutopilotPrerequisites from 1.6 to 1.8.2
• Community request: Made it possible to hide shortcuts from startmenu with a property. Set property DISABLESTARTMENUSHORTCUTS=1 on commandline to hide shortcuts. You can always go to C:\Program Files\MSEndpointMgr Shortcuts and execute them from there.
• Digital signed the MSI 2.2 package with a Digisign codesign certificate.
• Added Petri Paavola’s script Get-IntuneManagementExtensionDiagnostics to the project
• Added “Debug like Microsoft” which is a very extended version of the gather log from Intune. The information gathered by this function is massive, and you will be happy to use this one!
• Added easier debug functionality in Autopilot and ESP.

Version 2.0

• updated SyncMLViewer from v1.0.7 to v1.0.8 (Read more about the changes here Oliver's github)
• added script to help transition to Windows Update for Business and to find troublemaking policies interfering with the best configuration. (Read more about the script here Mattias's github)
• added reference to error codes and solutions of Microsoft Intune (Mattias's blog)
• added Rudy Ooms AutopilotTestAttestation script to check if your device is ready for pre-provisioning. (Read more about the solution here Rudy's blog)
• added easy Intune diagnostic export David Just)
• added autopilot precheck Jannik Reinhard)
• added Proactive remediation reader, Win32AppRedeploy and Intune RSOP Andrew)
• rebranded and created as a solution on MSEndpointMgr site.

Version 1.5

• Added new functionality to get and continue read the relevant eventlog messages you need in order to debug settings comming down to your client.

This tool will reveal any issues written to the eventlog. Events followed:

• Microsoft-Windows-DeviceManagement-Enterprise-Diagnostics-Provider/Admin
• Microsoft-Windows-DeviceManagement-Enterprise-Diagnostics-Provider/Operational
• Microsoft-Windows-ModernDeployment-Diagnostics-Provider/Autopilot
• Microsoft-Windows-ModernDeployment-Diagnostics-Provider/ManagementService
• Microsoft-Windows-Provisioning-Diagnostics-Provider/Admin
• Microsoft-Windows-Shell-Core/Operational
• Microsoft-Windows-Time-Service/Operational
• Microsoft-Windows-User Device Registration/Admin

A big thanks to David Segura OSDCloud where this code is from.

Version 1.4

• Added Petri Paavola's Intune Device Detail tool to the kit. Thanks for allowing me to add this tool, Petri

This tool visualizes Intune device and user details and Applications and Configurations Deployment This tools offers Resultant Set Of Policy -type view for Intune

Get more information about the tool Here

Version 1.3

• Added icons on all shortcuts
• Added Oliver Kieselbach's SyncMLViewer debug tool to the kit. Thanks for allowing me to add this tool, Oliver

This tool is able to present the SyncML protocol stream between the Windows 10 client and management system. In addition it does some extra parsing to extract details and make the analyzing a bit easier. The tool uses ETW to trace the MDM Sync session. In general the tool can be very handy to troubleshoot policy issues. Tracing what the client actually sends and receives provides deep protocol insights. It makes it easy to get confirmation about queried or applied settings. Happy tracing!

Get more information about the tool Here

Version 1.2

• Added -executionpolicy bypass on all shortcuts

Version 1.1

What is this addon going to help with?

• What if you added a policy from Intune and wanted to see where it added values on the device?
• What if you wanted to know if IME is actually is refreshing its registry and check for the installed apps are installed?
• Did anyone push new GPO's policies to your device? If you are transitioning to Intune with hybrid identity you like to know what goes on.

Added 5 shortcuts to view registry changes from the last 36 hours. (could be done via sysinternals tools. This is just so much easier.)

• Shortcut1: DEBUG - GPO changes last 36 hours (looking for changes in registry: HKLM:\Software\policies)
• Shortcut2: DEBUG - Enrollment changes last 36 hours (looking for changes in registry: HKLM:\Software\Microsoft\Enrollments)
• Shortcut3: DEBUG - IME changes last 36 hours (looking for changes in registry: HKLM:\Software\Microsoft\IntuneManagementExtension)
• Shortcut4: DEBUG - PolicyManager changes last 36 hours (looking for changes in registry: HKLM:\Software\Microsoft\PolicyManager)
• Shortcut5: DEBUG - ALL MS registry changes last 36 hours (OBS takes time to run - looking for changes in registry: HKLM:\Software\Microsoft)

[!NOTE] Script reference: https://github.com/guyrleech/General-Scripts/blob/master/Regrecent.ps1

Version 1.0

First release of the debug tool containting rerun win32 apps.

[!NOTE] Script reference: https://github.com/ztrhgf/useful_powershell_functions/blob/master/INTUNE/Invoke-IntuneWin32AppRedeploy.ps1