Forum Widgets
Latest Discussions
Intune enrollment of a device wiped from Intune
Description of the problem: We are facing an issue with a Windows device that was previously manually deleted from Intune and Microsoft Entra ID. The device was originally configured correctly as Microsoft Entra hybrid joined. Current status: Device status in Microsoft Entra ID: The device was visible in the Entra ID after deletion twice: Microsoft Entra hybrid joined Microsoft Entra registered We deleted the Microsoft Entra registered entry, but the hybrid join entry was still present. Actions taken: The device was connected to the company network. The dsregcmd /leave command was executed to reset the Azure AD status. After a restart, the device was successfully hybrid-joined again (via Azure AD Connect). MDM group policy is enabled: The Automatic enrollment with Azure AD policy is configured and applied. Expectation: The device should automatically re-enroll in Intune after the restart. Result: The device does not reappear in Intune. Enrollment is not triggered automatically, although all prerequisites appear to be met. Objective: We urgently need support to find out: How can we re-enroll Windows devices that were previously deleted from Intune? Is a manual action required, or can this be automated? What additional steps or configurations are necessary to force MDM enrollment? Additional information: Operating system: Windows 11 23H2 Status of dsregcmd /status: AzureAdJoined: YES DomainJoined: YES Group policies: Automatic enrollment with Azure AD is enabled and applied.FloIT93Dec 12, 2024Copper Contributor13Views0likes1CommentWhen i quit Teams, it stays active on my iPhone
When i stop working on my computer, and shut it down (Including Teams :) ), on the iPhone i am still available, i find this very annoying, I there a way to "sync" this, when i quit Teams on the pc, I should not be available anymore on my phone? Thanks!DigeratusDec 12, 2024Occasional Reader3Views0likes0CommentsIssue with SharePoint and Teams access
Hello everyone, I have the following question. My device is being currently involved in two different tenants (my main work and customer environment). When I try to login in azure portal, or devOps, I have no issue with the access. When I try to open customer's SharePoint page, or use Teams with the account registered in customer environment, I experience an issue with authentication. Firstly, I get a window where it is stated " Tenant Namerequires you to secure this device before you can access email, files and data. If you go to other apps or sites, they may recognize that you are signed in. You can enroll your device with...". When I continue, I got another error with error code: 530003. Device Platform is: macOS. Device state: unregistered. Thanks in advance for your assistance!MarLogDec 11, 2024Copper Contributor22Views0likes2CommentsGet-MgBetaDeviceManagementDeviceConfiguration fails
I’m trying to fetch all Intune configuration policies using Get-MgBetaDeviceManagementDeviceConfiguration (the Get-MgDeviceManagementDeviceConfiguration cmdlet is even worse), but it fails to retrieve certain policy types like Administrative Templates and Settings Catalog. How can I fetch all policy types?andrius_vasDec 11, 2024Copper Contributor13Views0likes1CommentiOS Screenshots not working (BYOD)
Hi All! I am having reports back from our iOS BYOD user's that they can not capture screenshots. Our policy and config for BYOD hasn't changed recently and we all don't restrict the taking of screenshots. I have also checked the App config and protection polices , but can't see anything in there, also they haven't changed. I know iOS has had updates recently , could this be the cause? Anyone else got this issue? Many ThanksSolvedUpNorthIntuneDec 10, 2024Iron Contributor149Views1like4CommentsGuidance on Intune MDM/MAM Setup
Hello All, We are implementing Intune for MDM and MAM on iOS and Android devices. If a user (with an Entra account) has two devices, one corporate-owned and one personal, then how can we ensure that: 1. The corporate device is enrolled as MDM. 2. The personal device is enrolled as MAM. Additionally, is it possible to block all device enrollments by default and only allow devices to enroll via serial/IMEI numbers using a policy? ThanksdrivesafelyDec 10, 2024Brass Contributor70Views0likes3CommentsWiFi profile does not work
I registered my device as a dedicated device for a single app, and I want to configure it so that it automatically connects to a network that the ESP32 generates, that is, a network without internet, but I am having difficulty doing this, I will show a photo of how I configured it and if there is anything wrong. I'll wait. Note: Android Enterprise platform and does not have a passwordAndr_MarinoDec 09, 2024Copper Contributor40Views0likes1CommentFind Out Who Sent The Remote Commands
My company has recently adopted InTune. I'm learning the process and becoming efficient with reimaging enrolling PCs. I know its possible to send command remote commands such as wiping devices, resetting PIN codes for mobile devices and etc. I would like to know how can I find out sent the command. For example, if a command was sent to an iPhone to reset the PIN code, is there a log or somewhere I can check to see which tech sent that command? Thank you, Shaun Burtonshaunburton85Dec 07, 2024Copper Contributor34Views0likes2CommentsIntune/Defender Firewall Policies
Coming from an environment where the Windows Firewall had been disabled, and having seen the light, we finally got approval to enable the firewall, but I am hitting a learning curve with Intune behaviors; I have a device where the firewall is enabled, and I get an admin prompt for an app that wants access. I cancel the admin prompt and do a little digging on what app wants access, and to what etc. and then create the policy to allow traffic inside of Intune. I thought the policies were not applying, but after poking around, I found that they are applied and listed under Monitoring > Firewall instead of the normal Inbound or Outbound Rules sections. However, because I canceled the admin prompt to allow the traffic, it automatically created a Block policy on the Inbound Rules section. Inside of Monitoring > Firewall I can see both the Block policy from the Inbound Rules, but also the Allow policy from Intune. Question: Is there a way to use the cloud Intune/Defender policy to wipe out the Block on the Inbound Rules section? Or do I need to make a remediation script to clean these up? Or is there some other 'best practice' way to clean up the unintended blocks from the local policy?CaedenVDec 05, 2024Copper Contributor4Views0likes0Commentsintune MDM, IOS device after a restore skips remote Management screen
I am using Intune MDM to enrol the devices. Enrolling a new device with Manged apple ID works without any issues and I can install profile getting all the apps installed via VPP Apps on the device When restoring a device from iCloud or a local computer backup taken on iTunes don’t seems to work as expected after a restore, device skips remote management screen and loads into the phone welcome screen. I am taking the backup of the same device and restoring it back, keeping in mind the device was never MDM managed therefore no management profile has been restored. We are using managed apple id’s so no VPP apps downloaded but due to managed Apple id this blocks the store capability of downloading any apps from app store. The device was added into MDM Intune via apple configurator therefore visible on Intune 1 - Backup to iCloud to keep all data 2 - wiped the device via Erase all content and settings. 3- Added the phone using Apple configurator 4- In ABM I assign the device to the MDM server. 5- kicked in manual sync from Intune. Once the device visible in Intune and profile assigned. start the setup process and select to restore from iCloud or backup from computer. I expected it to restart after the restore and show the remote management screen, but it does not. The only way around this is to restore via iCloud to a different device. This is not ideal Please let us know if you can recommend a better way of doing this therefore restoring the backup on same device and getting remote management configuration to enrol the device on MDMSolvedMustanDec 05, 2024Copper Contributor45Views0likes1Comment
Resources
Tags
- Intune3,888 Topics
- Mobile Device Management (MDM)2,112 Topics
- Mobile Application Management (MAM)771 Topics
- Conditional Access427 Topics
- Software Management394 Topics
- Graph API228 Topics
- Azure Friday152 Topics
- Autopilot103 Topics
- Android62 Topics
- iOS51 Topics