When dealing with Azure AD devices, usually we are facing the following challenges:

• There is no report in Azure AD that shows the stale devices.
• There is no retention policy to delete the stale devices from Azure AD.
• There is no way to restore the deleted Azure AD device or its attributes (e.g Bit-Locker recovery key).

In this article, I am providing the following PowerShell script that gives comprehensive options to deal with the above challenges.
Continue reading →