This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 20%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMV%3C/text%3E%3C/svg%3E)
Does anyone know if when you push a powershell script to a Windows 10 machine from Intune MDM, will it leave a copy in a cache somewhere on the target Windows machine? My MDM script contains a password and I don't want someone to find it.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 30%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
@Mario Veras , Based on my research, when a new script is deployed, script will be downloaded to the folder %ProgramFiles(x86)%\Microsoft Intune Extension\Policies\Scripts. The script will be run. When the script has run the above files will be cleaned up, so you will not find the scripts in a cache when run. But you will find the whole content of the script in the log file %ProgramData%\Microsoft\IntuneManagementExtension\logs. Find a link for the reference:
https://deploywindows.com/2018/01/11/want-to-master-troubleshooting-with-intune-and-windows-10/
Note: Non-Microsoft link, just for the reference.
That is to say, if we include any important password in the script, it will cause password leaked. It is not recommended.
Hope it can help.
If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(86.4, 66%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENH%3C/text%3E%3C/svg%3E)
It isn't ideal to put the password in the script, and yes I believe through log files someone might be able to see the plain text. See https://microsoftintune.uservoice.com/forums/291681-ideas/suggestions/33574702-secure-authentication-within-powershell-scripts-fo
Thank you very much. This is very helpful.
@Mario Veras , Thanks for accepting our reply as answer. I am glad the information can help. if there's anything else we can help in the future, feel free to post in our Q&A. We are always glad to help.
Thanks and have a nice day!