We'll I've set it and I've synced it but is it there?
Even if your configuration profile (CP) has arrived and doing it's thing, you probably still want to see how that happened. If your CP is not doing it's thing, then you'll want to check it has arrived and what it actually looks like.
Everything here assumes a Windows devices that is correctly enrolled and managed by Intune.
First locate the GUID of the management provider GUID. A folder in the following location will carry this GUID
C:\ProgramData\Microsoft\DMClient\<Provider GUID>
also
HKLM\SOFTWARE\Microsoft\EnterpriseResourceManager\Tracked\<Provider GUID>
Now you can go into the registry and see the evidence of the CPs arriving here and what their settings are:
HKLM\SOFTWARE\Microsoft\PolicyManager\Providers\<Provider GUID>\default\device
HKLM\SOFTWARE\Microsoft\PolicyManager\Providers\<Provider GUID>\default\<User SIDs>
Successful CP implementations are then reflected here often with accompanying keys confirming the GUID of the Provider which is responsible for applying the setting. This is not that helpful though. Typically you already know the GUID of the provider.
HKLM\SOFTWARE\Microsoft\PolicyManager\current\device
HKLM\SOFTWARE\Microsoft\PolicyManager\current\<User SIDs>
HKLM\SOFTWARE\Microsoft\PolicyManager\Providers\<Provider GUID>\default\device\ADMX_
The above type of policies maybe migrated from GPOs and the active settings still applied and operating under
HKLM\SOFTWARE\Policies
Unlike GPOs, at the time of writing there is no known way to locate a policy on the client and reverse lookup which configuration profile is applying the setting. But you love hunting through hundreds of configuration profiles for settings right?
