Skip to main content
Sign Out

Welcome to Dell

My Account
  • Place orders quickly and easily
  • View orders and track your shipping status
  • Enjoy members-only rewards and discounts
  • Create and access a list of your products
Sign In Create an Account Dell Financial Services Premier Sign In Partner Program Sign In
Contact Us

Your Dell.com Carts

Capture Dell Trusted Device Telemetry with Microsoft Intune

Summary: Need to configure Microsoft Intune for Dell Trusted Device? Our clear guide helps you set up quickly for enhanced security and control.

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Instructions

Affected Products:

  • Dell Trusted Device

Affected Versions:

  • v3.8 and Later

Affected Platforms

  • OptiPlex
  • Latitudes
  • Precision Workstations
  • XPS
Note: Prerequisite: The process below references scripts that are available for download from the Dell Trusted Device support page. Download Trusted Device Agent Scripts from the Dell Trusted Device Drivers & Downloads page before continuing.
  1. Log in to your organizations Microsoft Intune portal This hyperlink is taking you to a website outside of Dell Technologies. and go to Endpoint Security > Device Compliance > Scripts > Add > Windows 10 and later.

Compliance policies | Scripts

Figure 1: (English Only) Click Add Windows 10 and later

  1. Provide a Name for the custom script and click next.

Provide a Name for the customer script

Figure 2: (English Only) Provide a Name for the customer script

  1. Locate the Trusted Device Agent Script downloaded from the prerequisite steps in this article and extract the .zip file. Right-click the Get-TrustedDeviceResults.ps1 file and Open with Notepad.

Open Get-TrustedDeviceResults.ps1

Figure 3: (English Only) Open Get-TrustedDeviceResults.ps1

Note: Alternatively, you can use the keyboard shortcut Ctrl + A to select all the text in the script.
  1. In Notepad click Edit and then, click Select all.

Click Edit and Select All

Figure 4: (English Only) Click Edit and Select All

Note: Alternatively, you can use the keyboard shortcut Ctrl + C to copy all the highlighted text.
  1. Back in the Microsoft Intune console window Right-click in the Detection Script area and select Paste.

Right-click in the Detection Script area and select Paste

Figure 5: (English Only) Right-click in the Detection Script area and select Paste

  1. Set Run this script using the logged on credentials to No.

Set Run this script using the logged on credentials to No

Figure 6: (English Only) Set Run this script using the logged on credentials to No

  1. Set Enforce script signature check to No.

Set Enforce script signature check to No

Figure 7: (English Only) Set Enforce script signature check to No

  1. Set Run script in 64-bit PowerShell Host to Yes.

Set Run script in 64-bit PowerShell Host to Yes

Figure 8: (English Only) Set Run script in 64-bit PowerShell Host to Yes

  1. At the bottom of the page, Click Next.

Click Next

Figure 8: (English Only) Click Next

  1. On the Review + create screen review your configuration and click Create.

Click Create

Figure 10: (English Only) Click Create

  1. Log in to your organizations Microsoft Intune portal This hyperlink is taking you to a website outside of Dell Technologies. and go to Endpoint Security > Device Compliance > Polices and click Create Policy.

Click Create Policy

Figure 11: (English Only) Click Create Policy

  1. In the Create a policy tab, select Platform Windows 10 and later and Profile type Windows 10/11 compliance policy. Then click create.

Click Create

Figure 12: (English Only) Click Create

  1. Provide the Windows 10/11 compliance policy name and click Next.

Provide Policy Name and Click Next

Figure 13: (English Only) Provide Policy Name and Click Next

Note: Optionally, you can provide an expanded description for the policy.
  1. On the Compliance settings screen, click Custom Compliance to expand the settings.

Click Custom Compliance

Figure 14: (English Only) Click Custom Compliance

  1. Set Custom compliance to Require.

Set Customer compliance to Require

Figure 15: (English Only) Set Customer compliance to Require

  1. For Select your discovery script, click to select and search for the script previously created the custom script (step 2) and then click Select.

Select scripted and click Select

Figure 16: (English Only) Select the script and click Select

  1. For Upload and validate the JSON file with your custom compliance settings, click the Folder icon to launch file explorer and browse to where you extracted the prerequisite files. In the File Explorer, select the TrustedDeviceComplianceRules.json file and click Open.

Open TrustedDeviceComplianceRules.json

Figure 17: (English Only) Open TrustedDeviceComplianceRules.json

  1. Review the compliance settings and then click Next.

Review and click Next

Figure 18: (English Only) Review and click Next

  1. On Actions for noncompliance set any additional noncompliance sequences you would like to happen and then click Next.

Set additional noncompliance sequences and click Next

Figure 19: (English Only) Set additional noncompliance sequences and click Next

  1. On Assignments click Add Groups and on the Select groups to include tab locate your custom group for Dell devices and click the checkbox next to them. Then click select.

Select Groups and click select

Figure 20: (English Only) Select Groups and click select

Note: If you do not have a group already created you can reference, Create a group to manage users This hyperlink is taking you to a website outside of Dell Technologies., article to help in group creation.
  1. On the Windows 10/11 compliance policy page, confirm that your group was added and click Next.

onfirm your group was added and click Next

Figure 21: (English Only) Confirm that your group was added and click Next

  1. On the Review + create page review the configuration and click Create.

Click Create

Figure 22: (English Only) Click Create

  1. The compliance policy configuration is now complete, Intune starts collecting data based on the script and compliance values. To see compliance status, you can return to Endpoint Security > Device compliance > Compliance Polices > Compliancy Policy Name created in Step 3 and click View Report.

Dell trusted Device COmpliance Policy

Figure 23: (English Only) Dell trusted Device Compliance Policy

To contact support, reference Dell Data Security International Support Phone Numbers.
Go to TechDirect to generate a technical support request online.
For additional insights and resources, join the Dell Security Community Forum.

Affected Products

OptiPlex, XPS, Latitude, XPS, Workstations, Dell Trusted Device
Article Properties
Article Number: 000222830
Article Type: How To
Last Modified: 07 Mar 2024
Version:  2
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.