Hello there
First things thirst: I’m not an IT guy, I don’t know anything about coding and am about to throw my PC because everything I’ve tried doesn’t seem to work. I’m hoping I’ll get the solution with the help of some people who know better than I do.
I was assigned the task on making a USB Stick with some Scripts on it and creating a guide on how to extract the Hardware Hash and put it onto the same stick in OOBE Powershell.
I’ve figured some things about, just not the last part: I’ve created a Batch code that opens a PS1 file which should extract the hash and put it onto a csv.
The batch code redirects to the PS1 file which is essentially the Get-windowsautopilotinfo 3.9 from the powershell gallery. I’ve changed the output file name in the “Begin”-Part to D:, which should be the name the USB drive gets assigned when I plug it into the PC in OOBE.
Here’s a link to the Script if you want to take a look: PowerShell Gallery | Get-WindowsAutoPilotInfo 3.9
When I run the script, the batch opens, it displays the hardware hash and there’s no error sign. However, when I plug the USB drive into another computer it just contains the batch and the .ps1 file, but no CSV whatsoever.
What could be the issue here?
Sincere thanks to everybody trying to help.
Here’s the script I’m running:
#>
[CmdletBinding(DefaultParameterSetName = 'Default')]
param(
[Parameter(Mandatory=$False,ValueFromPipeline=$True,ValueFromPipelineByPropertyName=$True,Position=0)][alias("DNSHostName","ComputerName","Computer")] [String[]] $Name = @("localhost"),
[Parameter(Mandatory=$False)] [String] $OutputFile = "",
[Parameter(Mandatory=$False)] [String] $GroupTag = "",
[Parameter(Mandatory=$False)] [String] $AssignedUser = "",
[Parameter(Mandatory=$False)] [Switch] $Append = $false,
[Parameter(Mandatory=$False)] [System.Management.Automation.PSCredential] $Credential = $null,
[Parameter(Mandatory=$False)] [Switch] $Partner = $false,
[Parameter(Mandatory=$False)] [Switch] $Force = $false,
[Parameter(Mandatory=$True,ParameterSetName = 'Online')] [Switch] $Online = $false,
[Parameter(Mandatory=$False,ParameterSetName = 'Online')] [String] $TenantId = "",
[Parameter(Mandatory=$False,ParameterSetName = 'Online')] [String] $AppId = "",
[Parameter(Mandatory=$False,ParameterSetName = 'Online')] [String] $AppSecret = "",
[Parameter(Mandatory=$False,ParameterSetName = 'Online')] [String] $AddToGroup = "",
[Parameter(Mandatory=$False,ParameterSetName = 'Online')] [String] $AssignedComputerName = "",
[Parameter(Mandatory=$False,ParameterSetName = 'Online')] [Switch] $Assign = $false,
[Parameter(Mandatory=$False,ParameterSetName = 'Online')] [Switch] $Reboot = $false
)
Begin
{
# Initialize empty list
$computers = @()
# If online, make sure we are able to authenticate
if ($Online) {
# Get NuGet
$provider = Get-PackageProvider NuGet -ErrorAction Ignore
if (-not $provider) {
Write-Host "Installing provider NuGet"
Find-PackageProvider -Name NuGet -ForceBootstrap -IncludeDependencies
}
# Get WindowsAutopilotIntune module (and dependencies)
$module = Import-Module WindowsAutopilotIntune -PassThru -ErrorAction Ignore
if (-not $module) {
Write-Host "Installing module WindowsAutopilotIntune"
Install-Module WindowsAutopilotIntune -Force
}
Import-Module WindowsAutopilotIntune -Scope Global
# Get Azure AD if needed
if ($AddToGroup)
{
$module = Import-Module AzureAD -PassThru -ErrorAction Ignore
if (-not $module)
{
Write-Host "Installing module AzureAD"
Install-Module AzureAD -Force
}
}
# Connect
if ($AppId -ne "")
{
$graph = Connect-MSGraphApp -Tenant $TenantId -AppId $AppId -AppSecret $AppSecret
Write-Host "Connected to Intune tenant $TenantId using app-based authentication (Azure AD authentication not supported)"
}
else {
$graph = Connect-MSGraph
Write-Host "Connected to Intune tenant $($graph.TenantId)"
if ($AddToGroup)
{
$aadId = Connect-AzureAD -AccountId $graph.UPN
Write-Host "Connected to Azure AD tenant $($aadId.TenantId)"
}
}
# Force the output to a file
if ($OutputFile -eq "")
{
$OutputFile = "D:\autopilot.csv"
}
}
}
Process
{
foreach ($comp in $Name)
{
$bad = $false
# Get a CIM session
if ($comp -eq "localhost") {
$session = New-CimSession
}
else
{
$session = New-CimSession -ComputerName $comp -Credential $Credential
}
# Get the common properties.
Write-Verbose "Checking $comp"
$serial = (Get-CimInstance -CimSession $session -Class Win32_BIOS).SerialNumber
# Get the hash (if available)
$devDetail = (Get-CimInstance -CimSession $session -Namespace root/cimv2/mdm/dmmap -Class MDM_DevDetail_Ext01 -Filter "InstanceID='Ext' AND ParentID='./DevDetail'")
if ($devDetail -and (-not $Force))
{
$hash = $devDetail.DeviceHardwareData
}
else
{
$bad = $true
$hash = ""
}
# If the hash isn't available, get the make and model
if ($bad -or $Force)
{
$cs = Get-CimInstance -CimSession $session -Class Win32_ComputerSystem
$make = $cs.Manufacturer.Trim()
$model = $cs.Model.Trim()
if ($Partner)
{
$bad = $false
}
}
else
{
$make = ""
$model = ""
}
# Getting the PKID is generally problematic for anyone other than OEMs, so let's skip it here
$product = ""
# Depending on the format requested, create the necessary object
if ($Partner)
{
# Create a pipeline object
$c = New-Object psobject -Property @{
"Device Serial Number" = $serial
"Windows Product ID" = $product
"Hardware Hash" = $hash
"Manufacturer name" = $make
"Device model" = $model
}
# From spec:
# "Manufacturer Name" = $make
# "Device Name" = $model
}
else
{
# Create a pipeline object
$c = New-Object psobject -Property @{
"Device Serial Number" = $serial
"Windows Product ID" = $product
"Hardware Hash" = $hash
}
if ($GroupTag -ne "")
{
Add-Member -InputObject $c -NotePropertyName "Group Tag" -NotePropertyValue $GroupTag
}
if ($AssignedUser -ne "")
{
Add-Member -InputObject $c -NotePropertyName "Assigned User" -NotePropertyValue $AssignedUser
}
}
# Write the object to the pipeline or array
if ($bad)
{
# Report an error when the hash isn't available
Write-Error -Message "Unable to retrieve device hardware data (hash) from computer $comp" -Category DeviceError
}
elseif ($OutputFile -eq "")
{
$c
}
else
{
$computers += $c
Write-Host "Gathered details for device with serial number: $serial"
}
Remove-CimSession $session
}
}
End
{
if ($OutputFile -ne "")
{
if ($Append)
{
if (Test-Path $OutputFile)
{
$computers += Import-CSV -Path $OutputFile
}
}
if ($Partner)
{
$computers | Select "Device Serial Number", "Windows Product ID", "Hardware Hash", "Manufacturer name", "Device model" | ConvertTo-CSV -NoTypeInformation | % {$_ -replace '"',''} | Out-File $OutputFile
}
elseif ($AssignedUser -ne "")
{
$computers | Select "Device Serial Number", "Windows Product ID", "Hardware Hash", "Group Tag", "Assigned User" | ConvertTo-CSV -NoTypeInformation | % {$_ -replace '"',''} | Out-File $OutputFile
}
elseif ($GroupTag -ne "")
{
$computers | Select "Device Serial Number", "Windows Product ID", "Hardware Hash", "Group Tag" | ConvertTo-CSV -NoTypeInformation | % {$_ -replace '"',''} | Out-File $OutputFile
}
else
{
$computers | Select "Device Serial Number", "Windows Product ID", "Hardware Hash" | ConvertTo-CSV -NoTypeInformation | % {$_ -replace '"',''} | Out-File $OutputFile
}
}
if ($Online)
{
# Add the devices
$importStart = Get-Date
$imported = @()
$computers | % {
$imported += Add-AutopilotImportedDevice -serialNumber $_.'Device Serial Number' -hardwareIdentifier $_.'Hardware Hash' -groupTag $_.'Group Tag' -assignedUser $_.'Assigned User'
}
# Wait until the devices have been imported
$processingCount = 1
while ($processingCount -gt 0)
{
$current = @()
$processingCount = 0
$imported | % {
$device = Get-AutopilotImportedDevice -id $_.id
if ($device.state.deviceImportStatus -eq "unknown") {
$processingCount = $processingCount + 1
}
$current += $device
}
$deviceCount = $imported.Length
Write-Host "Waiting for $processingCount of $deviceCount to be imported"
if ($processingCount -gt 0){
Start-Sleep 30
}
}
$importDuration = (Get-Date) - $importStart
$importSeconds = [Math]::Ceiling($importDuration.TotalSeconds)
$successCount = 0
$current | % {
Write-Host "$($device.serialNumber): $($device.state.deviceImportStatus) $($device.state.deviceErrorCode) $($device.state.deviceErrorName)"
if ($device.state.deviceImportStatus -eq "complete") {
$successCount = $successCount + 1
}
}
Write-Host "$successCount devices imported successfully. Elapsed time to complete import: $importSeconds seconds"
# Wait until the devices can be found in Intune (should sync automatically)
$syncStart = Get-Date
$processingCount = 1
while ($processingCount -gt 0)
{
$autopilotDevices = @()
$processingCount = 0
$current | % {
if ($device.state.deviceImportStatus -eq "complete") {
$device = Get-AutopilotDevice -id $_.state.deviceRegistrationId
if (-not $device) {
$processingCount = $processingCount + 1
}
$autopilotDevices += $device
}
}
$deviceCount = $autopilotDevices.Length
Write-Host "Waiting for $processingCount of $deviceCount to be synced"
if ($processingCount -gt 0){
Start-Sleep 30
}
}
$syncDuration = (Get-Date) - $syncStart
$syncSeconds = [Math]::Ceiling($syncDuration.TotalSeconds)
Write-Host "All devices synced. Elapsed time to complete sync: $syncSeconds seconds"
# Add the device to the specified AAD group
if ($AddToGroup)
{
$aadGroup = Get-AzureADGroup -Filter "DisplayName eq '$AddToGroup'"
if ($aadGroup)
{
$autopilotDevices | % {
$aadDevice = Get-AzureADDevice -ObjectId "deviceid_$($_.azureActiveDirectoryDeviceId)"
if ($aadDevice) {
Write-Host "Adding device $($_.serialNumber) to group $AddToGroup"
Add-AzureADGroupMember -ObjectId $aadGroup.ObjectId -RefObjectId $aadDevice.ObjectId
}
else {
Write-Error "Unable to find Azure AD device with ID $($_.azureActiveDirectoryDeviceId)"
}
}
Write-Host "Added devices to group '$AddToGroup' ($($aadGroup.ObjectId))"
}
else {
Write-Error "Unable to find group $AddToGroup"
}
}
# Assign the computer name
if ($AssignedComputerName -ne "")
{
$autopilotDevices | % {
Set-AutopilotDevice -Id $_.Id -displayName $AssignedComputerName
}
}
# Wait for assignment (if specified)
if ($Assign)
{
$assignStart = Get-Date
$processingCount = 1
while ($processingCount -gt 0)
{
$processingCount = 0
$autopilotDevices | % {
$device = Get-AutopilotDevice -id $_.id -Expand
if (-not ($device.deploymentProfileAssignmentStatus.StartsWith("assigned"))) {
$processingCount = $processingCount + 1
}
}
$deviceCount = $autopilotDevices.Length
Write-Host "Waiting for $processingCount of $deviceCount to be assigned"
if ($processingCount -gt 0){
Start-Sleep 30
}
}
$assignDuration = (Get-Date) - $assignStart
$assignSeconds = [Math]::Ceiling($assignDuration.TotalSeconds)
Write-Host "Profiles assigned to all devices. Elapsed time to complete assignment: $assignSeconds seconds"
if ($Reboot)
{
Restart-Computer -Force
}
}
}
}
This: “$($env:TEMP)\autopilot.csv” is the original code i’ve changed to “D:\autopilot.csv”, I don’t really know if thats the error I made.
