5 Ways to Sync Intune Policies on Windows Devices

Jack Davies
Jul 13
6 min read

Learn how to manually synchronize your Windows 10 or Windows 11 computer with Microsoft Intune. By initiating a manual sync, you compel your device to connect with Intune and download the most recent organizational updates, policies, and communications.

According to Microsoft, the Company Portal app handles syncing automatically over Wi-Fi. However, if you've been disconnected for a while, a manual sync will bring your device up to date. For IT administrators, manually syncing policies is a routine and essential task, particularly after deploying new applications, scripts, or custom OMA-URI policies. It is also a vital step in the device setup process, especially after provisioning a Windows 11 device using Autopilot.

What happens when you force a device to sync with Intune?

Initiating a sync sends an immediate notification from Intune to the device, instructing it to check in. If the device is reachable, it will connect with Intune to download and apply the latest policies and assigned tasks.

For example, if you've assigned a new application to a group of Windows devices, triggering a sync will make those devices aware of the new deployment and start the process. Essentially, the sync forces the device to "call home" to the Intune service and retrieve the most recent instructions.

Think of it as the modern, cloud-based equivalent of running 'gpupdate' on a domain-joined computer; it's the command to get the latest rules, but for Intune-managed devices.

When should you force a device to sync with Intune?

Manually syncing devices with Microsoft Intune is a crucial action in several scenarios. Consider forcing a policy sync when:

You need to test policies immediately. A manual sync allows you to apply and validate policies on a user's device right away.
You are troubleshooting a device. It's often one of the first steps in diagnosing problems on an Intune-managed device.
An application isn't working correctly. If a work app is slow or exhibiting strange behavior, syncing can often fix it by pulling down necessary updates or configurations.
A download or process is stuck. Syncing can help resolve stalled work-related downloads or other background processes.

Ways to force a device to sync to Intune:

The default Intune Policy Sync Interval:

After you assign a policy, profile, or application in Microsoft Intune, it doesn't appear on devices instantly. There's a built-in delay known as the Intune Policy refresh cycle, which by default is set to 8 hours. This means a device can take up to 8 hours to automatically receive its new assignments.

Microsoft has defined specific default refresh times for all supported platforms. The following table details these policy sync intervals for various devices, including Windows, macOS, Android, and others.

Device Operating System	Default Intune Refresh Interval
Windows 10/11	Every 8 Hours
Windows 8.1	Every 8 Hours
Android	Every 8 Hours
IOS/iPadOS	Every 8 Hours
macOS	Every 8 Hours

The Intune Policy Sync Interval for newly enrolled devices:

Device Operating System	Device Intune Refesh Frequency
Windows 10/11	Every 3 minutes for 15 minutes, then every 15 minutes for 2 hours and then finally around every 8 hours
Windows 8.1	Every 3 minutes for 15 minutes, then every 15 minutes for 2 hours and then finally around every 8 hours
Android	Every 3 minutes for 15 minutes, then every 15 minutes for 2 hours and then finally around every 8 hours
IOS/iPadOS	Every 15 minutes for 1 hour and then finally around every 8 hours
macOS	Every 15 minutes for 1 hour and then finally around every 8 hours

1 - Syncing the device from the Windows Start Menu or Device Taskbar

You can quickly start a sync on any Windows 10 or Windows 11 device directly from the Start Menu.

Click the Start button or press the Windows key.
Begin typing "Company Portal".
In the search results, right-click on the Company Portal app.
Select Sync this device from the context menu.

Important: This option is only available from the Start Menu search results. Right-clicking the Company Portal icon if it's pinned to your taskbar will not show the "Sync this device" action.

Windows search screen displaying "Company Portal" app. Options are "Open" and "Sync this device" highlighted in red. Simple interface.

After you click 'Sync this device,' the Company Portal app will open to its Settings page and display a message indicating that the sync is in progress.

Settings menu with a sync option for device updates. "Syncing..." is displayed. White background with gray text and buttons.

2 - Syncing the device from the Intune Admin Centre

From the Microsoft Intune admin centre, administrators can use the Sync device action to force a selected device to immediately check in. This action compels the device to connect with Intune and receive any pending policies or commands that have been assigned to it.

This remote sync action is supported on the following platforms:

Windows
iOS / iPadOS
macOS
Android (Device Administrator and Android Enterprise)

How to Remotely Sync a Windows Device:

Sign in to the Microsoft Intune admin center.
Navigate to Devices > Windows.
From the device list, select the specific device you want to sync to open its Overview page.
Click the Sync button in the action bar.
Select Yes to confirm and initiate the sync.

Sync window on a device management interface for JDJD-LAP-032. Prompt asks to continue syncing with "Yes" in blue and "No" options.

3 - Syncing the device from the Company Portal app on Windows

End users can easily start a manual sync from the Company Portal app on their Windows PC.

Open the Company Portal app from the Start Menu.
Once the app loads, click the Settings icon in the bottom-left corner.
In the Settings menu, click the Sync button to begin.

Settings screen showing "Sync" button in blue, highlighted in red. Text indicates last successful sync on 13/07/2025 at 12:18:55.

Once you start the sync in the Company Portal app, allow some time for it to retrieve and apply the latest policies. You will know the process has finished successfully when you see the confirmation message: “Last Sync on [Date Time] was successful.”

Screen showing settings for device sync. A blue "Sync" button is visible. Text indicates the last sync on 13/07/2025 was successful.

4 - Syncing the device from the Settings app on Windows

You can manually refresh Intune policies on your Windows device directly from the Settings app. This action will sync the latest security policies, network profiles, and managed applications from Intune.

Open the Settings app by clicking Start > Settings.
Select the Accounts category.
Click on Access work or school.
Select your work or school account (it will have a small briefcase icon).
Click the Info button that appears.
Scroll down to the Device sync status section and click the Sync button.

Settings page showing account info. "Accounts" menu is highlighted. Connected email: jacob.peralta@jackdjd.com. Options to Connect, Disconnect.

Device sync status screen showing a successful sync on 13/07/2025. The "Sync" button is outlined in red.

5 - Syncing the device using PowerShell

Using PowerShell and Microsoft Graph to Force a Policy Sync

For advanced administration, you can use PowerShell and Microsoft Graph to remotely force an Intune policy sync on Windows devices. This method, based on the official Microsoft Graph PowerShell SDK documentation, allows you to target either a single device or all devices simultaneously.

Prerequisite: Install the Microsoft Graph Intune Module

Before you can run the sync commands, you must install the required PowerShell module.

Launch PowerShell with administrator privileges.
Run the following command to install the Microsoft.Graph.Intune module:

Windows PowerShell window shows a command: Install-Module -Name Microsoft.Graph.Intune. The command is highlighted in red.

Connect to Microsoft Graph

With the SDK installed, the next step is to connect your PowerShell session to Microsoft Graph. This is done using the 'Connect-MgGraph' cmdlet.

Run the following command in your administrative PowerShell window:

A browser window or sign-in dialog will open. Sign in using an account with sufficient privileges (such as a Global Administrator or Intune Administrator).
On the permissions request page, review the required scopes and grant consent to allow the SDK to manage resources on your behalf.

PowerShell window showing a script for Microsoft Graph. A pop-up requests permissions with options to accept or cancel.

To manage Intune devices, you must connect to Microsoft Graph with specific permissions, known as scopes. The -scope parameter allows you to request the exact permissions needed to read device properties, modify them, and perform administrative actions.

Run the following command in your PowerShell terminal. It specifies the scopes required for full device management:

If you are connecting for the first time or requesting new permissions, a sign-in window will appear.
Sign in with an administrative account and consent to the requested permissions.

CLI shows "Connect-MgGraph" command. A Microsoft login prompt requests permissions. "Consent on behalf of your organization" is highlighted.

Syncing a single device

To trigger a sync on a single Windows device, use the Sync-MgDeviceManagementManagedDevice cmdlet. This command instructs a specific device to immediately check in with Intune.

You will need the Device ID of the device you wish to sync. You can find this ID in the Intune admin centre or by using the Get-MgDeviceManagementManagedDevice cmdlet.

Run the following command, replacing "deviceID" with the actual ID of your target device:

Example:

Text on a black background shows a terminal command: Sync-MgDeviceManagementManagedDevice with a device ID. The mood is technical.

Syncing all Windows devices

The following PowerShell script automates the process of invoking an Intune policy sync across your entire fleet of Windows devices. It leverages the Microsoft Graph SDK to query for all devices where the operating system is Windows and then iterates through the list to initiate a sync for each.

Example: