Intune – You can now change the primary user of a Windows Device

When you onboard your Windows device in Intune, the device is automatically associated with the user registering the device; this user is called Primary User.

Until now, it was not possible to change the primary user, unless unregistering and re registering the device using another user account.

Good news, changing the Primary User associated with a Windows device is now possible.

NOTE this option is only available for Intune managed devices; it is not yet possible to do such thing for co-managed devices (this is the roadmap)

To do so, logon to either your Azure portal (https://portal.azure.com/) and reach the Intune\Devices\All devices (or Azure AD devices) blade or Endpoint Management portal (https://devicemanagement.microsoft.com/) and reach the Devices\Windows\Windows devices blade

image_thumb[1]  image_thumb

Then you can search for the device you want to change the primary user and then go to the device Properties blade to switch (or remove) the primary user

image_thumb[3]

In addition of this new feature, a new RBAC permission has been created – Managed Devices\Set primary user – to allow you delegate the permission to change the primary user.

The permission has been already granted to Helpdesk Operator, School Administrator, and Endpoint Security Manager.

image_thumb[2]

Benoit Hamet
Benoit Hamet
Benoit is working on Microsoft collaborative technologies He has been awarded as MVP for more than 12 years Currently MVP on Office 365 after being awarded on SharePoint (2011-2012) and Windows client & server (2002-2007) Speaker at various Microsoft events (TechDays, TechNet seminars) and Quest Software He works on on-premises (Active Directory, RADIUS/NPS, Exchange, Skype for Business, SharePoint, SQL, Terminal Server, Windows client and Windows Server) or online (Azure, Intune, Office 365, Exchange Online, SharePoint Online, Skype for Business Online, Teams) technologies