If you’ve done an Azure Ad Join for a device and found that you (the admin) is now the owner, it can create certain problems for you. If you’re going through an AutoPilot deployment the end user will end up being the owner. So, how do you modify the device owner to be the recipient of the device if you did the setup?

Get-AzureADUser -SearchString username

• Run for both new user and current user

Get-AzureADDevice -All $true | Where-Object {$_.DeviceTrustType -eq “AzureAD”}

• This will return all Joined devices. Might be too big a list.

Add-AzureADDeviceRegisteredOwner -ObjectId deviceObjectId -RefObjectId userObjectId

• Add the user first, where deviceObjectId is the device and userObjectId is the new owner

Remove-AzureADDeviceRegisteredOwner -ObjectId deviceObjectId -OwnerId previousUserObjectId

• Removes the previous owner where deviceObjectId is the device and previousUserObjectId is the previous owner

Get-AzureADDeviceRegisteredOwner -ObjectId deviceObjectId

• Confirms change