AVD Intune Device Record Removal

AVD Intune Device Record Removal

Intune-registered AVD desktop records are not automatically cleaned up as part of the desktop removal and rebuild process. To enable this automatic cleanup of these records, you must perform the following steps:

Assign the Required Permissions

The following permissions must be granted to the Nerdio Manager app service:

  • Device.ReadWrite.All

  • DeviceManagementManagedDevices.ReadWrite.All

Note: If Intune integration is enabled in the Nerdio Manager console, then the required DeviceManagementManagedDevices.ReadWrite.All permission already exists. If not, it must be added manually.

To assign the required permissions:

  1. In the Azure portal, navigate to Microsoft Entra ID.

  2. On the left, in the Manage blade, select App Registrations.

  3. Search for and select your Nerdio Manager app registration.

  4. On the left, in the Manage blade, select API permissions.

  5. Select Add a permission and then select Microsoft Graph.

  6. Select Application permissions.

  7. Enable the required permissions, as shown below.

  8. From the review screen, select Grant admin consent for , and then select OK.

    The status changes from Not granted to Granted.

Set the Advanced App Service Setting

Once permissions have been granted, the app service setting Features:AvdHostEntraIdCleanup must be set to True.

To set the App Service setting:

Was this article helpful?

0 out of 0 found this helpful
Have more questions? Submit a request

Comments (0 comments)

Please sign in to leave a comment.