Managing user profiles on Windows devices can be a annoying task, especially when dealing with old or inactive profiles. Microsoft Intune offers a streamlined solution to automatically delete user profiles that haven’t been used for a specified period, such as 60 days. This article explores how to configure this setting in Intune and best practices to ensure your system remains clean and efficient.

Why Delete Old User Profiles?

Old user profiles can clutter your system, consume valuable storage space, and pose security risks. By automatically deleting these profiles, you can:

  • Free Up Disk Space: Remove unnecessary data and optimize storage.
  • Enhance Security: Reduce the risk of unauthorized access through outdated profiles.
  • Improve System Performance: Ensure your devices run smoothly without the burden of old profiles.

Configuring Intune to Delete Old User Profiles

Follow these steps to configure automatic deletion of user profiles older than 60 days using Microsoft Intune:

  1. Sign in to Intune Admin Center: Navigate to the Microsoft Intune admin center.
  2. Create a New Configuration Profile:
    • Go to Devices > Windows > Configuration Create New Policy.
    • Select Platform: Windows 10 and later.
    • Choose Profile type: Settings catalog.
    • Click Create.
      Delete profiles
  3. Configure the Setting:
    • In the Settings picker, search for “Delete user profiles older than a specified number of days on system restart”.
    • Set the option to Enabled.
    • Specify the number of days (e.g., 60 days) after which profiles should be deleted.
    • Click Next.
      Delete profiles
  4. Assign the Profile:
    • Assign the profile to the desired device groups.
    • Review and create the profile.
  5. Monitor and Validate:
    • Ensure the policy is applied correctly by checking the device status in the Intune admin center.
    • Verify that old profiles are being deleted as expected.

Best Practices for Managing User Profiles

  1. Regular Monitoring: Continuously monitor the status of user profiles and ensure the policy is functioning as intended.
  2. Pilot Testing: Before deploying the policy organization-wide, conduct a pilot test on a small group of devices to identify any potential issues.
  3. User Communication: Inform users about the policy to avoid any confusion or data loss. Ensure they back up important data before profiles are deleted.
  4. Review and Update: Periodically review the policy settings and update them as necessary to adapt to changing organizational needs.

Conclusion

Automatically deleting old user profiles after 60 days using Microsoft Intune is a practical approach to maintaining a clean and secure IT environment. By following the steps outlined above and adhering to best practices, you can optimize your system’s performance and enhance security.

 

Paul Cobben