IntuneHydrationKit
0.1.1
Hydrates Microsoft Intune tenants with best-practice baseline configurations including policies, compliance packs, enrollment profiles, dynamic groups, security baselines, and conditional access starter packs.
Minimum PowerShell version
7.0
Installation Options
Owners
Copyright
(c) 2025 Jorgeasaurus. All rights reserved.
Package Details
Author(s)
- Jorgeasaurus
Tags
Intune Microsoft365 Graph Baseline Compliance Security Autopilot MDM Endpoint MEM Azure EntraID ConditionalAccess DeviceManagement
Functions
Connect-IntuneHydration Test-IntunePrerequisites New-IntuneDynamicGroup Get-OpenIntuneBaseline Import-IntuneBaseline Import-IntuneCompliancePolicy Import-IntuneAppProtectionPolicy Import-IntuneNotificationTemplate Import-IntuneEnrollmentProfile Import-IntuneDeviceFilter Import-IntuneConditionalAccessPolicy Initialize-HydrationLogging Write-HydrationLog Import-HydrationSettings New-HydrationResult Get-ResultSummary Get-GraphErrorMessage Test-HydrationKitObject
PSEditions
Dependencies
-
- Microsoft.Graph.Authentication (>= 2.0.0)
Release Notes
## v0.1.0 - Initial Release
- OpenIntuneBaseline integration (auto-downloads latest policies)
- Compliance policy templates (Windows, macOS, iOS, Android, Linux)
- App protection policies (Android/iOS MAM)
- Dynamic groups and device filters
- Enrollment profiles (Autopilot, ESP)
- Conditional Access starter pack (always created disabled)
- Safe deletion (only removes kit-created objects)
- Multi-cloud support (Global, USGov, USGovDoD, Germany, China)
- WhatIf/dry-run mode
- Detailed logging and reporting
FileList
- IntuneHydrationKit.nuspec
- Templates\AppProtection\iOS-App-Protection.json
- IHKLogo.png
- Templates\Compliance\Android-Compliance-FullyManaged-Basic.json
- Templates\Compliance\Android-Compliance-FullyManaged-Strict.json
- IntuneHydrationKit.psd1
- Templates\Compliance\iOS-Compliance-Basic.json
- IntuneHydrationKit.psm1
- Templates\Compliance\iOS-Compliance-Strict.json
- Invoke-IntuneHydration.ps1
- Templates\Compliance\Linux-Compliance-Basic.json
- LICENSE
- Templates\Compliance\Linux-Compliance-Strict.json
- README.md
- Templates\Compliance\macOS-Compliance-Basic.json
- settings.example.json
- Templates\Compliance\macOS-Compliance-Strict.json
- .github\workflows\publish.yml
- Templates\Compliance\Windows-Compliance-Policy.json
- Private\Copy-DeepObject.ps1
- Templates\Compliance\Windows-Custom-Compliance.json
- Private\Get-GraphErrorMessage.ps1
- Templates\ConditionalAccess\Block access for unknown or unsupported device platform.json
- Private\Get-HydrationTemplates.ps1
- Templates\ConditionalAccess\Block legacy authentication.json
- Private\Get-ResultSummary.ps1
- Templates\ConditionalAccess\No persistent browser session.json
- Private\New-HydrationResult.ps1
- Templates\ConditionalAccess\Require compliant or hybrid Azure AD joined device for admins.json
- Private\Remove-ReadOnlyGraphProperties.ps1
- Templates\ConditionalAccess\Require compliant or hybrid Azure AD joined device or multifactor authentication for all users.json
- Private\Test-HydrationKitObject.ps1
- Templates\ConditionalAccess\Require MDM-enrolled and compliant device to access cloud apps for all users (Preview).json
- Public\Connect-IntuneHydration.ps1
- Templates\ConditionalAccess\Require multifactor authentication for admins.json
- Public\Get-OpenIntuneBaseline.ps1
- Templates\ConditionalAccess\Require multifactor authentication for all users.json
- Public\Import-HydrationSettings.ps1
- Templates\ConditionalAccess\Require multifactor authentication for Azure management.json
- Public\Import-IntuneAppProtectionPolicy.ps1
- Templates\ConditionalAccess\Require multifactor authentication for guest access.json
- Public\Import-IntuneBaseline.ps1
- Templates\ConditionalAccess\Require multifactor authentication for Microsoft admin portals.json
- Public\Import-IntuneCompliancePolicy.ps1
- Templates\ConditionalAccess\Require phishing-resistant multifactor authentication for admins.json
- Public\Import-IntuneConditionalAccessPolicy.ps1
- Templates\ConditionalAccess\Securing security info registration.json
- Public\Import-IntuneDeviceFilter.ps1
- Templates\ConditionalAccess\Use application enforced restrictions for O365 apps.json
- Public\Import-IntuneEnrollmentProfile.ps1
- Templates\DynamicGroups\Autopilot-Groups.json
- Public\Import-IntuneNotificationTemplate.ps1
- Templates\DynamicGroups\Manufacturer-Groups.json
- Public\Initialize-HydrationLogging.ps1
- Templates\DynamicGroups\OS-Groups.json
- Public\New-IntuneDynamicGroup.ps1
- Templates\Enrollment\macOS-DEP-Enrollment-Profile.json
- Public\Test-IntunePrerequisites.ps1
- Templates\Enrollment\Windows-Autopilot-Profile.json
- Public\Write-HydrationLog.ps1
- Templates\Enrollment\Windows-ESP-Profile.json
- Templates\AppProtection\Android-App-Protection.json
- Templates\Notifications\First-Warning.json
Version History
| Version | Downloads | Last updated |
|---|---|---|
| 0.1.1 (current version) | 4 | 11/28/2025 |