Azure: List of people who dont have a device

Question

Hello,

im using Azure to keep track of our Users and Devices in our Company.
Now im need of a list of all our current (active) users that dont have a device attached to them in Azure or Admin Center.

Is there a way to generate a list like that somehow? Or is there a filter or a column-option that im blindly missing?

Thank you in advance!

Answer 1

You can use the script below. It may take a while to finish depending on how many users and devices you have, but it will return for each UPN the number of devices they have.

$Result = @()
$Users = Get-AzureADUser -All $true | Select UserPrincipalName,ObjectId
ForEach ($User in $Users) {
    $Devices = Get-AzureADUserRegisteredDevice -ObjectId $User.ObjectId
    $Result += New-Object PSObject -Property @{
        UserPrincipalName = $User.UserPrincipalName
        DeviceCount = $Devices.Count
    }
}

$Result

Answer 2

@dded I am not sure what kinds of devices you have, registered, azure ad join, hybrid azure ad join but try one of the following methods

• get-msoldevice -All (Look for registeredOwenerUPN).
• Get-AzureADDeviceRegisteredOwner

Answer 3

One thing you could do is query a list of all of the users into a CSV file using Get-AzureADUser -ALL. Then you could check whether the users have the device owner attribute.

Another way to do this is to check whether users have Intune licenses assigned. https://learn.microsoft.com/en-us/azure/active-directory/users-groups-roles/groups-dynamic-membership#multi-value-properties

Reference from related thread: Is there a way to pull a list of users from AAD with certain criteria IE. no devices attached to their account?