IntuneUserSettingsPolicyWindows365¶
Parameters¶
Parameter | Attribute | DataType | Description | Allowed Values |
---|---|---|---|---|
CrossRegionDisasterRecoverySetting | Write | MSFT_MicrosoftGraphcloudPcCrossRegionDisasterRecoverySetting | Defines whether the user's Cloud PC enables cross-region disaster recovery and specifies the network for the disaster recovery. | |
DisplayName | Key | String | The setting name displayed in the user interface. | |
LocalAdminEnabled | Write | Boolean | Indicates whether the local admin option is enabled. Default value is false. To enable the local admin option, change the setting to true. If the local admin option is enabled, the end user can be an admin of the Cloud PC device. | |
NotificationSetting | Write | MSFT_MicrosoftGraphcloudPcNotificationSetting | Defines the setting of the Cloud PC notification prompts for the Cloud PC user. | |
ResetEnabled | Write | Boolean | Indicates whether an end user is allowed to reset their Cloud PC. When true, the user is allowed to reset their Cloud PC. When false, end-user initiated reset isn't allowed. The default value is false. | |
RestorePointSetting | Write | MSFT_MicrosoftGraphcloudPcRestorePointSetting | Defines how frequently a restore point is created (that is, a snapshot is taken) for users' provisioned Cloud PCs (default is 12 hours), and whether the user is allowed to restore their own Cloud PCs to a backup made at a specific point in time. | |
Id | Write | String | The unique identifier for an entity. Read-only. | |
Assignments | Write | MSFT_DeviceManagementConfigurationPolicyAssignments[] | Represents the assignment to the Intune policy. | |
Ensure | Write | String | Present ensures the policy exists, absent ensures it is removed. | Present , Absent |
Credential | Write | PSCredential | Credentials of the Admin | |
ApplicationId | Write | String | Id of the Azure Active Directory application to authenticate with. | |
TenantId | Write | String | Id of the Azure Active Directory tenant used for authentication. | |
ApplicationSecret | Write | PSCredential | Secret of the Azure Active Directory tenant used for authentication. | |
CertificateThumbprint | Write | String | Thumbprint of the Azure Active Directory application's authentication certificate to use for authentication. | |
ManagedIdentity | Write | Boolean | Managed ID being used for authentication. | |
AccessTokens | Write | StringArray[] | Access token used for authentication. |
MSFT_DeviceManagementConfigurationPolicyAssignments¶
Parameters¶
Parameter | Attribute | DataType | Description | Allowed Values |
---|---|---|---|---|
dataType | Write | String | The type of the target assignment. | #microsoft.graph.cloudPcManagementGroupAssignmentTarget , #microsoft.graph.groupAssignmentTarget , #microsoft.graph.allLicensedUsersAssignmentTarget , #microsoft.graph.allDevicesAssignmentTarget , #microsoft.graph.exclusionGroupAssignmentTarget , #microsoft.graph.configurationManagerCollectionAssignmentTarget |
deviceAndAppManagementAssignmentFilterType | Write | String | The type of filter of the target assignment i.e. Exclude or Include. Possible values are:none, include, exclude. | none , include , exclude |
deviceAndAppManagementAssignmentFilterId | Write | String | The Id of the filter for the target assignment. | |
deviceAndAppManagementAssignmentFilterDisplayName | Write | String | The display name of the filter for the target assignment. | |
groupId | Write | String | The group Id that is the target of the assignment. | |
groupDisplayName | Write | String | The group Display Name that is the target of the assignment. | |
collectionId | Write | String | The collection Id that is the target of the assignment.(ConfigMgr) |
MSFT_MicrosoftGraphCloudPcCrossRegionDisasterRecoverySetting¶
Parameters¶
Parameter | Attribute | DataType | Description | Allowed Values |
---|---|---|---|---|
DisasterRecoveryNetworkSetting | Write | MSFT_MicrosoftGraphCloudPcDisasterRecoveryNetworkSetting | Indicates the network settings of the Cloud PC during a cross-region disaster recovery operation. | |
DisasterRecoveryType | Write | String | Indicates the type of disaster recovery to perform when a disaster occurs on the user's Cloud PC. The possible values are: notConfigured, crossRegion, premium, unknownFutureValue. The default value is notConfigured. | notConfigured , crossRegion , premium , unknownFutureValue |
MaintainCrossRegionRestorePointEnabled | Write | Boolean | Indicates whether Windows 365 maintain the cross-region disaster recovery function generated restore points. If true, the Windows 365 stored restore points false indicates that Windows 365 doesn't generate or keep the restore point from the original Cloud PC. If a disaster occurs, the new Cloud PC can only be provisioned using the initial image. This limitation can result in the loss of some user data on the original Cloud PC. The default value is false. | |
UserInitiatedDisasterRecoveryAllowed | Write | Boolean | Indicates whether the client allows the end user to initiate a disaster recovery activation. True indicates that the client includes the option for the end user to activate Backup Cloud PC. When false, the end user doesn't have the option to activate disaster recovery. The default value is false. Currently, only premium disaster recovery is supported. |
MSFT_MicrosoftGraphCloudPcDisasterRecoveryNetworkSetting¶
Parameters¶
Parameter | Attribute | DataType | Description | Allowed Values |
---|---|---|---|---|
OnPremisesConnectionId | Write | String | Indicates the display name of the virtual network that the new Cloud PC joins. Only applicable for the '#microsoft.graph.cloudPcDisasterRecoveryAzureConnectionSetting' odata type. | |
RegionGroup | Write | String | Indicates the logic geographic group this region belongs to. Multiple regions can belong to one region group. When a region group is configured for disaster recovery, the new Cloud PC is assigned to one of the regions within the group based on resource availability. For example, the europeUnion region group contains the North Europe and West Europe regions. Only applicable for the '#microsoft.graph.cloudPcDisasterRecoveryMicrosoftHostedNetworkSetting' odata type. Possible values are: default, australia, canada, usCentral, usEast, usWest, france, germany, europeUnion, unitedKingdom, japan, asia, india, southAmerica, euap, usGovernment, usGovernmentDOD, unknownFutureValue, norway, switzerland, southKorea, middleEast, mexico, australasia, europe. Use the Prefer: include-unknown-enum-members request header to get the following values in this evolvable enum: norway, switzerland, southKorea, middleEast, mexico, australasia, europe. | default , australia , canada , usCentral , usEast , usWest , france , germany , europeUnion , unitedKingdom , japan , asia , india , southAmerica , euap , usGovernment , usGovernmentDOD , unknownFutureValue , norway , switzerland , southKorea , middleEast , mexico , australasia , europe |
RegionName | Write | String | Indicates the Azure region that the new Cloud PC is assigned to. The Windows 365 service creates and manages the underlying virtual network. Only applicable for the '#microsoft.graph.cloudPcDisasterRecoveryMicrosoftHostedNetworkSetting' odata type. | |
odataType | Write | String | The type of the entity. | #microsoft.graph.cloudPcDisasterRecoveryAzureConnectionSetting , #microsoft.graph.cloudPcDisasterRecoveryMicrosoftHostedNetworkSetting |
MSFT_MicrosoftGraphCloudPcNotificationSetting¶
Parameters¶
Parameter | Attribute | DataType | Description | Allowed Values |
---|---|---|---|---|
RestartPromptsDisabled | Write | Boolean | If true, doesn't prompt the user to restart the Cloud PC. If false, prompts the user to restart Cloud PC. The default value is false. |
MSFT_MicrosoftGraphCloudPcRestorePointSetting¶
Parameters¶
Parameter | Attribute | DataType | Description | Allowed Values |
---|---|---|---|---|
FrequencyType | Write | String | The time interval in hours to take snapshots (restore points) of a Cloud PC automatically. Possible values are: default, fourHours, sixHours, twelveHours, sixteenHours, twentyFourHours. The default value is default that indicates that the time interval for automatic capturing of restore point snapshots is set to 12 hours. | default , fourHours , sixHours , twelveHours , sixteenHours , twentyFourHours |
UserRestoreEnabled | Write | Boolean | If true, the user has the ability to use snapshots to restore Cloud PCs. If false, non-admin users can't use snapshots to restore the Cloud PC. |
Description¶
Intune User Settings Policy for Windows365
Permissions¶
Microsoft Graph¶
To authenticate with the Microsoft Graph API, this resource required the following permissions:
Delegated permissions¶
-
Read
- CloudPC.Read.All, Group.Read.All
-
Update
- CloudPC.ReadWrite.All, Group.Read.All
Application permissions¶
-
Read
- CloudPC.Read.All, Group.Read.All
-
Update
- CloudPC.ReadWrite.All, Group.Read.All
Examples¶
Example 1¶
This example is used to test new resources and showcase the usage of new resources being worked on. It is not meant to use as a production baseline.
Configuration Example
{
param(
[Parameter()]
[System.String]
$ApplicationId,
[Parameter()]
[System.String]
$TenantId,
[Parameter()]
[System.String]
$CertificateThumbprint
)
Import-DscResource -ModuleName Microsoft365DSC
node localhost
{
IntuneUserSettingsPolicyWindows365 "My User Settings Policy for Windows 365"
{
DisplayName = "User Settings Policy W365";
Ensure = "Present";
Assignments = @(
MSFT_DeviceManagementConfigurationPolicyAssignments{
dataType = "#microsoft.graph.cloudPcManagementGroupAssignmentTarget"
groupId = "42a638ec-2bf2-47a8-8f5f-176ce2124b7b"
groupDisplayName = "COGPASS-PROD-CA_AADP2"
}
);
CrossRegionDisasterRecoverySetting = MSFT_MicrosoftGraphcloudPcCrossRegionDisasterRecoverySetting{
MaintainCrossRegionRestorePointEnabled = $True
DisasterRecoveryNetworkSetting = MSFT_MicrosoftGraphCloudPcDisasterRecoveryNetworkSetting{
RegionName = "automatic"
RegionGroup = "switzerland"
odataType = "#microsoft.graph.cloudPcDisasterRecoveryMicrosoftHostedNetworkSetting"
}
UserInitiatedDisasterRecoveryAllowed = $false
DisasterRecoveryType = "crossRegion"
};
LocalAdminEnabled = $True;
NotificationSetting = MSFT_MicrosoftGraphcloudPcNotificationSetting{
RestartPromptsDisabled = $False
};
ResetEnabled = $True;
RestorePointSetting = MSFT_MicrosoftGraphcloudPcRestorePointSetting{
FrequencyType = "twelveHours"
UserRestoreEnabled = $True
};
ApplicationId = $ApplicationId;
TenantId = $TenantId;
CertificateThumbprint = $CertificateThumbprint;
}
}
}
Example 2¶
This example is used to test new resources and showcase the usage of new resources being worked on. It is not meant to use as a production baseline.
Configuration Example
{
param(
[Parameter()]
[System.String]
$ApplicationId,
[Parameter()]
[System.String]
$TenantId,
[Parameter()]
[System.String]
$CertificateThumbprint
)
Import-DscResource -ModuleName Microsoft365DSC
node localhost
{
IntuneUserSettingsPolicyWindows365 "My User Settings Policy for Windows 365"
{
DisplayName = "User Settings Policy W365";
Ensure = "Present";
Assignments = @(
MSFT_DeviceManagementConfigurationPolicyAssignments{
dataType = "#microsoft.graph.cloudPcManagementGroupAssignmentTarget"
groupId = "42a638ec-2bf2-47a8-8f5f-176ce2124b7b"
groupDisplayName = "COGPASS-PROD-CA_AADP2"
}
);
CrossRegionDisasterRecoverySetting = MSFT_MicrosoftGraphcloudPcCrossRegionDisasterRecoverySetting{
MaintainCrossRegionRestorePointEnabled = $True
DisasterRecoveryNetworkSetting = MSFT_MicrosoftGraphCloudPcDisasterRecoveryNetworkSetting{
RegionName = "switzerlandnorth" # Updated property
RegionGroup = "switzerland"
odataType = "#microsoft.graph.cloudPcDisasterRecoveryMicrosoftHostedNetworkSetting"
}
UserInitiatedDisasterRecoveryAllowed = $false
DisasterRecoveryType = "crossRegion"
};
LocalAdminEnabled = $True;
NotificationSetting = MSFT_MicrosoftGraphcloudPcNotificationSetting{
RestartPromptsDisabled = $False
};
ResetEnabled = $True;
RestorePointSetting = MSFT_MicrosoftGraphcloudPcRestorePointSetting{
FrequencyType = "twelveHours"
UserRestoreEnabled = $True
};
ApplicationId = $ApplicationId;
TenantId = $TenantId;
CertificateThumbprint = $CertificateThumbprint;
}
}
}
Example 3¶
This example is used to test new resources and showcase the usage of new resources being worked on. It is not meant to use as a production baseline.
Configuration Example
{
param(
[Parameter()]
[System.String]
$ApplicationId,
[Parameter()]
[System.String]
$TenantId,
[Parameter()]
[System.String]
$CertificateThumbprint
)
Import-DscResource -ModuleName Microsoft365DSC
node localhost
{
IntuneUserSettingsPolicyWindows365 "My User Settings Policy for Windows 365"
{
DisplayName = "User Settings Policy W365";
Ensure = "Absent";
ApplicationId = $ApplicationId;
TenantId = $TenantId;
CertificateThumbprint = $CertificateThumbprint;
}
}
}