Merge pull request #16701 from MicrosoftDocs/release-intune-2411

Release intune 2411

autopilot/dfci-management.md

@@ -90,6 +90,7 @@ For more information, see [Intune devices and apps API overview](/graph/intune-c
 - [Microsoft Surface](/surface/surface-manage-dfci-guide).
 - Panasonic.
 - VAIO.
+- Samsung.
 
 Other OEMs are pending.
 

memdocs/analytics/data-platform-schema.md

@@ -7,7 +7,7 @@ keywords:
 ms.author: smbhardwaj
 author: smritib17 
 manager: dougeby
-ms.date: 02/01/2024
+ms.date: 11/14/2024
 ms.topic: conceptual
 ms.service: microsoft-intune
 ms.subservice: fundamentals
@@ -33,17 +33,17 @@ ms.collection:
 
 *Applies to: Microsoft Intune*
 
-This article goes over the properties supported in the Intune Data Platform.
-
-Device query allows you to quickly assess the state of devices in your environment and take action. When you enter a query on a selected device, Device query runs a query in real time. The data returned can then be filtered, grouped, and refined to answer business questions, troubleshoot issues in your environment, or respond to security threats.
+This article goes over the properties supported in the Intune Data Platform. The Intune Data Platform can be accessed via Device query for single devices, Inventory, and Device query for Multiple Devices.
 
 Each table (entity) in this page lists the types of queries that are supported.
 
 ## BiosInfo
 
 **Description**: Provides basic BIOS Information.  
 
-**Supported for**: Device query, single device on-demand.
+**Supported platforms**: Windows
+
+**Supported for**: Device query, single device on-demand, Inventory.
 
 | **Property** | **Type** | **Description** |
 | --- | --- | --- |
@@ -55,7 +55,10 @@ Each table (entity) in this page lists the types of queries that are supported.
 ## Certificate
 
 **Description**: Certificate Authorities installed in Keychains/ca-bundles. Only certificates for computers are returned.
- **Supported for**: Device query, single device on-demand.
+
+**Supported platforms**: Windows
+
+**Supported for**: Device query, single device on-demand.
 
 | **Property** | **Type** | **Description** |
 | --- | --- | --- |
@@ -78,7 +81,9 @@ Each table (entity) in this page lists the types of queries that are supported.
 
 **Description**: Retrieves CPU hardware info on the machine.
 
-**Supported for**: Device query, single device on-demand.
+**Supported platforms**: Windows
+
+**Supported for**: Device query, single device on-demand, Inventory.
 
 | **Property** | **Type** | **Description** |
 | --- | --- | --- |
@@ -100,7 +105,9 @@ Each table (entity) in this page lists the types of queries that are supported.
 
 **Description**: Retrieves basic information about the physical disks of a system.
 
-**Supported for**: Device query, single device on-demand.
+**Supported platforms**: Windows
+
+**Supported for**: Device query, single device on-demand, Inventory.
 
 | **Property** | **Type** | **Description** |
 | --- | --- | --- |
@@ -120,7 +127,9 @@ Each table (entity) in this page lists the types of queries that are supported.
 
 **Description**: Retrieves encryptable volume status of the machine.
 
-**Supported for**: Device query, single device on-demand
+**Supported platforms**: Windows
+
+**Supported for**: Device query, single device on-demand, Inventory.
 
 | **Property** | **Type** | **Description** |
 | --- | --- | --- |
@@ -136,6 +145,8 @@ Each table (entity) in this page lists the types of queries that are supported.
 
 **Description**: Lists all file info of the passed file or files under the passed directory.
 
+**Supported platforms**: Windows
+
 **Supported for**: Device query, single device on-demand.
 
 > [!NOTE]
@@ -161,6 +172,8 @@ Each table (entity) in this page lists the types of queries that are supported.
 
 **Description**: Lists local user groups.  
 
+**Supported platforms**: Windows
+
 **Supported for**: Device query, single device on-demand.
 
 | **Property** | **Type** | **Description** |
@@ -173,6 +186,8 @@ Each table (entity) in this page lists the types of queries that are supported.
 
 **Description**: Lists local user accounts.
 
+**Supported platforms**: Windows
+
 **Supported for**: Device query, single device on-demand.
 
 | **Property** | **Type** | **Description** |
@@ -187,7 +202,9 @@ Each table (entity) in this page lists the types of queries that are supported.
 
 **Description**: Details for logical drives on the system. A logical drive generally represents a single partition.
 
-**Supported for**: Device query, single device on-demand.
+**Supported platforms**: Windows
+
+**Supported for**: Device query, single device on-demand, Inventory.
 
 | **Property** | **Type** | **Description** |
 | --- | --- | --- |
@@ -202,7 +219,10 @@ Each table (entity) in this page lists the types of queries that are supported.
 
 **Description**: Memory Information.
 
-**Supported for**: Device query, single device on-demand.
+**Supported platforms**: Windows
+
+**Supported for**: Device query, single device on-demand, Inventory.
+Note that PhysicalMemoryFreeBytes and VirtualMemoryFreeBytes properties are only supported for Device query, single device on-demand. 
 
 | **Property** | **Type** | **Description** |
 | --- | --- | --- |
@@ -215,7 +235,9 @@ Each table (entity) in this page lists the types of queries that are supported.
 
 **Description**: A single row containing the operating system name and version.
 
-**Supported for**: Device query, single device on-demand,
+**Supported platforms**: Windows
+
+**Supported for**: Device query, single device on-demand, Inventory.
 
 | **Property** | **Type** | **Description** |
 | --- | --- | --- |
@@ -232,6 +254,8 @@ Each table (entity) in this page lists the types of queries that are supported.
 
 **Description**: All running processes on the host system.  
 
+**Supported platforms**: Windows
+
 **Supported for**: Device query, single device on-demand.
 
 | **Property** | **Type** | **Description** |
@@ -261,7 +285,9 @@ Each table (entity) in this page lists the types of queries that are supported.
 
 **Description**: Displays information pertaining to the chassis and its security status.
 
-**Supported for**: Device query, single device on-demand.
+**Supported platforms**: Windows
+
+**Supported for**: Device query, single device on-demand, Inventory.
 
 | **Property** | **Type** | **Description** |
 | --- | --- | --- |
@@ -283,6 +309,8 @@ Each table (entity) in this page lists the types of queries that are supported.
 
 **Description**: System information of the device.  
 
+**Supported platforms**: Windows
+
 **Supported for**: Device query, single device on-demand.
 
 | **Property** | **Type** | **Description** |
@@ -299,7 +327,9 @@ Each table (entity) in this page lists the types of queries that are supported.
 
 **Description**: Provides TPM related information of the device.  
 
-**Supported for**: Device query, single device on-demand.
+**Supported platforms**: Windows
+
+**Supported for**: Device query, single device on-demand, Inventory.
 
 | **Property** | **Type** | **Description** |
 | --- | --- | --- |
@@ -317,6 +347,8 @@ Each table (entity) in this page lists the types of queries that are supported.
 
 **Description**: Provides App Crash info in Windows event log file Application in look back time.
 
+**Supported platforms**: Windows
+
 **Supported for**: Device query, single device on-demand.
 
 | ReportId(Key) | string (max 256 characters) | Report ID of the App crash |
@@ -331,6 +363,8 @@ Each table (entity) in this page lists the types of queries that are supported.
 
 **Description**: Details for in-use Windows device drivers. This doesn't display installed but unused drivers.
 
+**Supported platforms**: Windows
+
 **Supported for**: Device query, single device on-demand.
 
 | **Property** | **Type** | **Description** |
@@ -350,6 +384,8 @@ Each table (entity) in this page lists the types of queries that are supported.
 
 **Description**: Get Windows Event logs in the specified log name and look back in time.  
 
+**Supported platforms**: Windows
+
 **Supported for**: Device query, single device on-demand.
 
 > [!NOTE]
@@ -369,7 +405,10 @@ possible value:CRITICAL\_ERROR,ERROR,WARNING,INFORMATION,VERBOSE |
 ## WindowsQfe
 
 **Description**: Information about security patches on the device.
-**Supported for**: Device query, single device on-demand.
+
+**Supported platforms**: Windows
+
+**Supported for**: Device query, single device on-demand, Inventory.
 
 | Property | Type | Description |
 | --- | --- | --- |
@@ -385,6 +424,8 @@ possible value:CRITICAL\_ERROR,ERROR,WARNING,INFORMATION,VERBOSE |
 
 **Description**: Lists registry under the passed registry key.  
 
+**Supported platforms**: Windows
+
 **Supported for**: Device query, single device on-demand.
 
 > [!NOTE]
@@ -401,6 +442,8 @@ possible value:CRITICAL\_ERROR,ERROR,WARNING,INFORMATION,VERBOSE |
 
 **Description**: Lists all installed Windows services and their relevant data.
 
+**Supported platforms**: Windows
+
 **Supported for**: Device query, single device on-demand.
 
 | **Property** | **Type** | **Description** |
@@ -418,4 +461,66 @@ possible value:CRITICAL\_ERROR,ERROR,WARNING,INFORMATION,VERBOSE |
 | ServiceDescription | string (max 256 characters) | Service Description |
 | WindowsUserAccount | string (max 256 characters) | The name of the account that the service process is logged on as when it runs. This name can be of the form Domain\UserName |
 
+## Battery
+
+**Description**: Provides details about battery and battery health.
+
+**Supported Features**: Inventory
+
+**Supported Platforms**: Windows
+
+| **Property** | **Type** | **Description** |
+| --- | --- | --- |
+| CycleCount | Long | The number of times a battery has gone through a full charge and discharge. Can be used to assess the battery state|
+| DesignCapacity | Long (milliwatt hours) | The theoretical capacity of the battery when new.|
+| FullChargedCapacity | Long (milliwatt hours) | Full charge capacity of the battery.|
+| InstanceName| String | Name used to identify the battery instance.|
+| Manufacturer| String | Manufacturer of the battery.|
+| Model| String | Display name of the battery.|
+| SerialNumber| String | Battery serial number that is assigned by the manufacturer.|
+
+## NetworkAdapter
+
+**Description**: Provides basic network adapter information.
+
+**Supported Features**: Inventory
+
+**Supported Platforms**: Windows
+
+| **Property** | **Type** | **Description** |
+| --- | --- | --- |
+| Identifier | String | Unique identifier of the adapter from other devices on the system. |
+| Manufacturer | String | Name of the network adapter's manufacturer. |
+| Type | String | Network medium in use. |
+
+> [!NOTE]
+> Inventory will only report up to 20 network adapters per device.
+
+## Time
+
+**Description**: Provides basic time information.
 
+**Supported Features**: Inventory
+
+**Supported Platforms**: Windows
+
+| **Property** | **Type** | **Description** |
+| --- | --- | --- |
+| TimeZone | String | Describes the device's time zone. |
+
+## VideoController
+
+**Description**: Provides video controller and graphics information.
+
+**Supported Features**: Inventory
+
+**Supported Platforms**: Windows
+
+| **Property** | **Type** | **Description** |
+| --- | --- | --- |
+| AdapterDacType | String | Name or identifier of the digital-to-analog converter (DAC) chip. The character set of this property is alphanumeric. |
+| AdapterRam | Long | Memory size of the video adapter. |
+| CurrentScanMode | String | Current scan mode. |
+| GraphicsModel | String | Provides manufacturer and model information of graphics card. |
+| Identifier | String | Identifier (unique to the computer system) for this video controller. |
+| VideoModeDescription | String | Current resolution, color, and scan mode settings of the video controller. |

memdocs/analytics/device-query.md

@@ -35,19 +35,22 @@ Device query allows you to quickly gain on-demand information about the state of
 
 ## Prerequisites
 
-To use Device query in your tenant, you must have a license that includes Microsoft Intune Advanced Analytics. Advanced Analytics features are available with:
+- To use Device query in your tenant, you must have a license that includes Microsoft Intune Advanced Analytics. Advanced Analytics features are available with:
 
-- The Intune Advanced Analytics Add-on
-- Microsoft Intune Suite
+  - The Intune Advanced Analytics Add-on
+  - Microsoft Intune Suite
 
-To use Device query on a device, the device must be enrolled in Endpoint Analytics. Learn [how to enroll a device in Endpoint Analytics](enroll-intune.md).
+- To use Device query on a device, the device must be enrolled in Endpoint Analytics. Learn [how to enroll a device in Endpoint Analytics](enroll-intune.md).
 
-You cannot opt out of cloud notifications (WNS)
+- You cannot opt out of cloud notifications (WNS)
 
-For a user to use Device query, you must assign the **Managed Devices** - **Query** permission to them.  
+- For a user to use Device query, you must assign the **Managed Devices** - **Query** permission to them.  
 
-To use Device query, devices must be Intune managed and corporate owned.
+- To use Device query, devices must be Intune managed and corporate owned.
 
+- To run remote actions, at a minimum, sign into the [Intune admin center](https://go.microsoft.com/fwlink/?linkid=2109431) with an account that has the **Help Desk Operator** role. For more information on the different roles, go to [Role-based access control (RBAC) with Microsoft Intune](../intune/fundamentals/role-based-access-control.md).
+
+- To receive the remote action, the device must be connected to the internet and powered on.
 
 ## Supported platforms
 
@@ -64,6 +67,39 @@ For more information on Kusto Query Language, see [Learn more about Kusto Query
 > [!TIP]
 > You can now use Copilot in Intune (public preview) to generate KQL queries for device query using natural language requests. To learn more, go to [Query with Copilot in device query](../intune/copilot/copilot-intune-overview.md#query-with-copilot-in-device-query).
 
+## Remote device actions
+
+Use the Intune remote device actions in Single device query to help you manage your devices remotely. From the device query interface, you can now run device actions based on query results for faster and more efficient troubleshooting.
+
+### Available remote actions
+
+The available device actions depend on the device configuration. Not all actions are available for all devices.
+
+For a complete list of what can be done on your devices, in the Intune admin center, select Devices > All devices, and select a specific device. The available device actions are shown at the top. 
+
+The following list includes supported device actions:
+
+|Action|Description|
+|---|---|
+|[Autopilot reset](/windows/deployment/windows-autopilot/windows-autopilot-reset#reset-devices-with-remote-windows-autopilot-reset)|Restores a device to its original settings and removes personal files, apps, and settings.|
+|[BitLocker key rotation](../intune/protect/encrypt-devices.md#rotate-bitlocker-recovery-keys)|Changes the BitLocker recovery key for a device and uploads the new key to Intune.|
+|[Collect diagnostics](../intune/remote-actions/collect-diagnostics.md)|Collects diagnostic logs from a device and uploads the logs to Intune.|
+|[Delete](../intune/remote-actions/devices-wipe.md)|Removes a device from Intune management, any company data is removed, and the device is retired.|
+|[Fresh start](../intune/remote-actions/device-fresh-start.md)|Reinstalls the latest version of Windows on a device and removes apps that the manufacturer installed.|
+|[Full scan](../intune/configuration/device-restrictions-windows-10.md#microsoft-defender-antivirus)|Initiates a full scan of the device by Microsoft Defender Antivirus.|
+|[Locate device](../intune/remote-actions/device-locate.md)|Shows the approximate location of a device on a map.|
+|[Pause ConfigRefresh](../intune/remote-actions/pause-config-refresh.md)|Pause ConfigRefresh to run remediation on a device for troubleshooting or maintenance or to make changes.|
+|[Quick scan](../intune/configuration/device-restrictions-windows-10.md#microsoft-defender-antivirus)|Initiates a quick scan of the device by Microsoft Defender Antivirus.|
+|[Remote control with Team Viewer](../intune/remote-actions/teamviewer-support.md)|Allows you to remotely control a device using TeamViewer.|
+|[Rename device](../intune/remote-actions/device-rename.md)|Changes the device name in Intune.|
+|[Restart](../intune/remote-actions/device-rename.md)|Restarts a device.|
+|[Retire](../intune/remote-actions/devices-wipe.md#retire)|Removes company data and settings from a device, and leaves personal data intact.|
+|[Rotate Local admin password](../intune/protect/windows-laps-policy.md#manually-rotate-passwords)|Changes the local administrator password for a device and stores the password in Intune.|
+|[Synchronize device](../intune/remote-actions/device-sync.md)|Syncs a device with Intune to apply the latest policies and configurations.|
+|[Update Windows Defender Security Intelligence](/windows/security/threat-protection/windows-defender-antivirus/manage-protection-updates-windows-defender-antivirus)|Updates the security intelligence files for Microsoft Defender Antivirus.|
+|[Windows 10 PIN reset](../intune/remote-actions/device-windows-pin-reset.md)|Resets the PIN of a device that uses Microsoft Entra authentication.|
+|[Wipe](../intune/remote-actions/devices-wipe.md#wipe)|This action restores a device to its factory settings and removes all data and settings.|
+
 ## Supported Operators  
 
 Device query supports only a subset of the operators supported in the Kusto Query Language (KQL). The following operators are currently supported: