Hi, We currently use a PowerShell script that retrieves device and user information and then creates a system tray icon to allow users to check things like their computer name, email address and printer PIN code easily. In order to allow users to get extended information about their AD account without using the Active Directory PowerShell module, or having admin rights, we currently use the following command: $ADUserObj = ([ADSISearcher]"(&(objectCategory=User)(SamAccountName=$env:USERNAME))").FindAll().Properties Now this works fine for AD users, however we are moving more devices to InTune / AzurwAD and this method does not work for AzureAD users on a local device. I have tried to use the Get-LocalUser approach, however AAD users are not considered local so do not show in any results. Accessing the user's UPN is possible via whoami or the registry - but the 2 extension attributes Pager and employeeNumber are the ones I am really after. I cannot seem to find any information on how to grab these details from the local AAD account though. If I run the following command against the user as an Azure admin: (Get-AzureADUser -SearchString $user).ToJson() Then I can see that these attributes are present in AAD and are syncing; but I cannot figure out a way to get them once they are on a local device. Any suggestions on which method / approach is best to find these attributes would be much appreciated. I am open to different methods (e.g. reading the registry /WMI etc); the only requirements I have is that it needs to be able to be run by a non admin user silently in the background without requiring additional PS modules to be installed.