Versions Compared

Old Version 1

changes.mady.by.user William Johnson

Saved on

compared with

New Version 2

changes.mady.by.user William Chattin

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Today we're going to scorch a device from MEM and Azure AD. Let's get started.

Removing a Device from Endpoint Manager and Autopilot

You will need to have access to Azure AD and Microsoft Endpoint Manager on a device that's not being scorched. 

We are going to be working in Endpoint Manager. You can use Chrome or Edge for good results.

  1. Record the serial number of the device that needs to be removed.

    1. In my example you'll find that I'm working on device 5X38M63.

  2. Log into Office 365.

  3. Either using the tiles to the left of your screen or selecting the "Waffle" in the top left look for the Admin tile.

  4. Select the Admin Tile.

  5. The tile looks like this and will open a new screen:

  6. Select "Show All" on the left menu area.

  7. Select "Endpoint Manager".

  8. Chose "Devices" on the left panel.

  9. Chose "Windows".

  10. You can search for the device by its Serial Number.

  11. Select the record you want to work with.

  12. Select the Delete option (Looks like a trash can).

  13. Select "Yes" when asked to confirm deleting the record.

  14. Caution - You'll want to note the device name especially if its different than the serial number. We'll need it soon.

  15. Next we'll need to remove the Autopilot record from MEM.

  16. Click Devices.

  17. Click Enroll Devices.

  18. Under "Windows Autopilot Deployment Program" select Devices.

  19. Put the serial number of the device you want to check up on here.

  20. Check the box to the left of the box of the device we want to remove.

  21. Click the "Delete" option.

  22. Select the "Yes" option to confirm the operation.

  23. If you click the bell icon you can see the status of the deletions taking place. Autopilot deletion will take several minutes. You don't have to wait. You can move onto the next step.

Removing a device record from Azure Active Directory

We are going to work in Azure Active Directory. Chrome or Edge both work to do this.

You may skip the first few steps if you know how to navigate to Azure Active Directory.

  1. Log into Office 365.

  2. Either using the tiles to the left of your screen or selecting the "Waffle" in the top left look for the Admin tile.

  3. Select the Admin Tile.

  4. The tile looks like this and will open a new screen:

  5. Select "Show All" on the left menu area.

  6. Select "Azure Active Directory".

  7. You will select "Azure Active Directory" again on the panel on the left. 

  8. Select "Devices".

  9. Search for the device name. In my case I'm looking up SSD-5X38M63. In most cases (While we're in a Hybrid environment) there will be two results.

  10. Select both of the checkboxes next to the device records. 

  11. When you do this the trash can icon with the selection "Delete" will be available. Chose this.

  12. If the records do not delete then its likely there's something connected to MEM still.

Removing a Device Record from the local on premise Active Directory

We are going to be working in Users and Computers - Active Directory.

If you go to Add and Remove Programs on a Windows 10 Domain Joined System you can select RSAT: Active Directory Domain Services

Now search for Turn Windows Features On and Off. Make sure Active Directory Lightweight Services is checked. Finally, after download, installs, restart you can search "Users and Computers" and you'll find the AD environment we're working in.

  1. You should see the following screen when you open Users and Computers.

    Image Removed

  2. If co.ssd.k12.mo.us is not an option you'll need to right click on the top item "Active Directory Users and Computers" and select "Change domain".

  3. Type in co.ssd.k12.mo.us and select the "Ok" button.

  4. Right click on co.ssd.k12.mo.us and select "Find..."

  5. You should see the following screen.

    Image Removed

  6. Select the down arrow next to Users, Contacts and Groups and select "Computers".

  7. Type in the SSD-SERIALNUMBER of the computer we're working with.

  8. When you click "Find Now" you should see the following:

    Image Removed

  9. Right click on the device record we want to remove.

  10. Select "Delete".

  11. Confirm the operation by clicking "Yes".

Congratulations, you're now ready to put a vanilla Windows 10 install onto the device and go through enrollment again. There's very few options when scorching a device as in this is the only option so please use it. 

Note

Caution - You need to follow the steps below before enrolling:

  • Format and reinstall Windows 10 onto main system drive.

    • Next steps - Format and Reinstall Windows 10

    Note

    Caution - Make sure that you format the system drive

    1. You can delete the partitions and create one larger partition. That will work.

    2. Create a local SSD account.

    3. Rename the computer to SSD-SERIALNUMBER.

    4. Bind the system to the on prem domain. You can now use the enrollment instructions.

    Filter by label (Content by label)
    showLabelsfalse
    sortmodified
    showSpacefalse
    reversetrue
    cqllabel = "mem-intune" and type = "page" and space = "TSKC"

    Page Contents

    Table of Contents
    minLevel2
    absoluteUrltrue
    printablefalse