# Check Updatable Assets

### Description

This runbook checks the Windows Update for Business onboarding status for all device members of a Microsoft Entra ID group. It queries each device and reports the enrollment state per update category and any returned error details. Use this to validate whether group members are correctly registered as updatable assets.

### Location

Group → Devices → Check Updatable Assets

**Full Runbook name**

rjgit-group\_devices\_check-updatable-assets

### Permissions

#### Application permissions

* **Type**: Microsoft Graph
  * Device.Read.All
  * Group.Read.All
  * WindowsUpdates.ReadWrite.All

#### Permission notes

Azure: Contributor on Storage Account

### Parameters

#### GroupId

Object ID of the group whose device members will be checked.

| Property      | Value  |
| ------------- | ------ |
| Required      | true   |
| Default Value |        |
| Type          | String |

[Back to Runbook Reference overview](https://docs.realmjoin.com/automation/runbooks/runbook-references)