Blog Post

Intune Customer Success
6 MIN READ

Debunking the myth: Cloud-native Windows devices and access to on-premises resources

Intune_Support_Team's avatar
Intune_Support_Team
Silver Contributor
Nov 14, 2025
By: Roger Southgate - Sr. Product Manager | Microsoft Intune Myth vs reality Myth: Cloud-native Windows devices can’t access on-premises resources such as file shares or legacy applications. Re...
Updated Nov 14, 2025
Version 2.0
Virtual Private Network (VPN)
windows
windows autopilot
Ronan909's avatar
Ronan909
Copper Contributor
Mar 10, 2026

What would be useful is if you could provide us with tools scripts that provide insight into device-based auth which may be occurring in the environment. This will give customers more confidence in their ability to adopt cloud-native. Think of this from the perspective of a large organization with many 1000's of shares and with an unknown quantity of legacy apps which may or may not have device-based auth requirements.  

Jason_Sandys's avatar
Jason_Sandys
Icon for Microsoft rankMicrosoft
Mar 10, 2026

Hi Ronan909​, Thank you for the comment here. I agree that tooling could help, however, there is no one single way to perform "device auth" in code (or auth in general for that matter) so there's unfortunately not a way to provide a comprehensive method here to detect this. Most apps that deviate from using built-in Windows auth do this in very non-standard ways that are ultimately unknown to us as well and thus difficult if not impossible to detect without foreknowledge of what they are doing but if we know that, then there's no reason for automated detection--it's kind of like a catch-22. I'm not sure what you are calling out with "shares" though. Accessing file shares hosted on on-prem servers is seamless with Entra joined devices (as long as they have connectivity to the host servers, but this connectivity requirement exists regardless of join type). Can you please expand on why you called out "shares"?