We have checked thoroughly that our test devices are not part of any other groups. We waited time between unassigning the script. We have a few scripts it seems that always show up in our intunepowershell.log that should not be running. It has become important now for us to resolve this nagging issue. Thanks for any suggestions!
@BatmanJohn-5715, From your description, it seems that our issue is the script is still running on the device after we remove the devices from the assigned group. If there's any misunderstanding, feel free to let us know.
For our issue, we suggest to choose one affected device, Go to Settings->Accounts->Access work or school, and sync policy on our account. Afterwards, restart the affected device and see if the script is still running. Meanwhile, check the device status for this affected device in Intune portal to see if the device record will disappear.
Please try the above steps and if there's any update, feel free to let us know.
If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Thank you for the suggestions. I have sync'd the computer, fresh started, reimaged a clean 2004 Windows, removed it from Intune and Autopilot by deleting account and hash. It happens on multiple computers as well. Somewhere in our system this script which disables ipv6 in a way we would like to change is still being called to run during enrollment. I was wondering if there was some script I could run to check for all instances of the script in our MEM console. Thanks again, working on this today.
@BatmanJohn-5715, Thanks for the reply. From your description, I know we have removed the device from Intune. But when we enroll this device again, the script is assigned again. From this phenomenon, it seems the script can be assigned to the user who sign in this device, We can check it under Troublahoosting+support in Microsoft Endpoint manager admin center, select the user who sign in this device, select Powershell scripts to see if there's any script assigned to this user.
Hope it can help.
@BatmanJohn-5715, How are thing going? Did we check the above information? if there's any update, feel free to let us know.
By any chance is there any powershell script that is assigned to a dynamic group. That's the only possible way a device could get it even after fresh re-enrollment.
4 people are following this question.
