The CleanPC configuration service provider (CSP) allows removal of user-installed and pre-installed applications, with the option to persist user data. This CSP was added in Windows 10, version 1703.
In the post I will show the benefits and the user experience for using the CleanPC from Intune. This it a way of removing preinstalled application on a OEM device, and the job is well done.
There is to possible ways to use this:
CleanPCWithoutRetainingUserData
Where the Windows 10 device is reset, all Win32 installed application are removed and user data is also removed.
CleanPCRetainingUserData
Where the Windows 10 device is reset, all Win32 installed application are removed and user data is retained on the device.
How to use CleanPC from Intune
Start https://portal.azure.com and find the Intune blade
Click on Devices – click on Enrolled devices
Search for the device you need to run the CleanPC on.
Click on …More at the top left corner –> Click Fresh Start
Now you have the choice to retain user data or not.
Click ok
Then will the status in Intune saying – cleanWindowsDevice pending.. and the device will starting to do a refresh.
In the Intune portal under Devices – Monitor – Device Action you can see that the cleanWindowsDevice is complete.
When it is finish the device object is removed from Intune
Now for the user experience for scenario “Retain user data”
The Windows 10 device will restart will doing the reset.
The user will not getting any kind of notice – the device will just restart and start the process.
The refresh process will count up to 100%
When it is finish the user will be able to login to the device again with the AzureAD credential.
On the desktop the a html document that contains a list of removed apps
The list is very detailed with app name, Publisher and Version
Please notice that the building Microsoft Ondrive is also removed!!
When the device is reset the AzureAD relation is still valid but the device is no longer managed by Intune.
The user need to Enroll into Intune again to getting application and settings from the company.
Now for the user experience for scenario where no user data is retained
The Windows 10 device will restart will doing the reset.
The user will not getting any kind of notice – the device will just restart and start the process.
This will do a reinstall of Windows – so its like a completely new computer with out any thing preloaded
When the device is finish installing then the OOBE process will kick in – and the user need to go through the process and AzureAD join the device again
Cloud First 
Thanks Lars for the detailed explanation. Very helpful to see the users perspective.
I tried this with some laptops and worked fine. Noticed that any additional built-in harddrives are not getting wiped. Any idea on this?
I have not tried – but I will test it
Thank you for this, I was wondering how this work in Hybrid mode where AUTO MDM is enabled via GPO