Forum Widgets
Latest Discussions
Intune enrollment of a device wiped from Intune
Description of the problem: We are facing an issue with a Windows device that was previously manually deleted from Intune and Microsoft Entra ID. The device was originally configured correctly as Microsoft Entra hybrid joined. Current status: Device status in Microsoft Entra ID: The device was visible in the Entra ID after deletion twice: Microsoft Entra hybrid joined Microsoft Entra registered We deleted the Microsoft Entra registered entry, but the hybrid join entry was still present. Actions taken: The device was connected to the company network. The dsregcmd /leave command was executed to reset the Azure AD status. After a restart, the device was successfully hybrid-joined again (via Azure AD Connect). MDM group policy is enabled: The Automatic enrollment with Azure AD policy is configured and applied. Expectation: The device should automatically re-enroll in Intune after the restart. Result: The device does not reappear in Intune. Enrollment is not triggered automatically, although all prerequisites appear to be met. Objective: We urgently need support to find out: How can we re-enroll Windows devices that were previously deleted from Intune? Is a manual action required, or can this be automated? What additional steps or configurations are necessary to force MDM enrollment? Additional information: Operating system: Windows 11 23H2 Status of dsregcmd /status: AzureAdJoined: YES DomainJoined: YES Group policies: Automatic enrollment with Azure AD is enabled and applied.FloIT93Dec 12, 2024Copper Contributor13Views0likes1CommentWhen i quit Teams, it stays active on my iPhone
When i stop working on my computer, and shut it down (Including Teams :) ), on the iPhone i am still available, i find this very annoying, I there a way to "sync" this, when i quit Teams on the pc, I should not be available anymore on my phone? Thanks!DigeratusDec 12, 2024Occasional Reader3Views0likes0CommentsIssue with SharePoint and Teams access
Hello everyone, I have the following question. My device is being currently involved in two different tenants (my main work and customer environment). When I try to login in azure portal, or devOps, I have no issue with the access. When I try to open customer's SharePoint page, or use Teams with the account registered in customer environment, I experience an issue with authentication. Firstly, I get a window where it is stated " Tenant Namerequires you to secure this device before you can access email, files and data. If you go to other apps or sites, they may recognize that you are signed in. You can enroll your device with...". When I continue, I got another error with error code: 530003. Device Platform is: macOS. Device state: unregistered. Thanks in advance for your assistance!MarLogDec 11, 2024Copper Contributor22Views0likes2CommentsGet-MgBetaDeviceManagementDeviceConfiguration fails
I’m trying to fetch all Intune configuration policies using Get-MgBetaDeviceManagementDeviceConfiguration (the Get-MgDeviceManagementDeviceConfiguration cmdlet is even worse), but it fails to retrieve certain policy types like Administrative Templates and Settings Catalog. How can I fetch all policy types?andrius_vasDec 11, 2024Copper Contributor13Views0likes1CommentGuidance on Intune MDM/MAM Setup
Hello All, We are implementing Intune for MDM and MAM on iOS and Android devices. If a user (with an Entra account) has two devices, one corporate-owned and one personal, then how can we ensure that: 1. The corporate device is enrolled as MDM. 2. The personal device is enrolled as MAM. Additionally, is it possible to block all device enrollments by default and only allow devices to enroll via serial/IMEI numbers using a policy? ThanksdrivesafelyDec 10, 2024Brass Contributor70Views0likes3CommentsWiFi profile does not work
I registered my device as a dedicated device for a single app, and I want to configure it so that it automatically connects to a network that the ESP32 generates, that is, a network without internet, but I am having difficulty doing this, I will show a photo of how I configured it and if there is anything wrong. I'll wait. Note: Android Enterprise platform and does not have a passwordAndr_MarinoDec 09, 2024Copper Contributor40Views0likes1CommentFind Out Who Sent The Remote Commands
My company has recently adopted InTune. I'm learning the process and becoming efficient with reimaging enrolling PCs. I know its possible to send command remote commands such as wiping devices, resetting PIN codes for mobile devices and etc. I would like to know how can I find out sent the command. For example, if a command was sent to an iPhone to reset the PIN code, is there a log or somewhere I can check to see which tech sent that command? Thank you, Shaun Burtonshaunburton85Dec 07, 2024Copper Contributor34Views0likes2CommentsIntune/Defender Firewall Policies
Coming from an environment where the Windows Firewall had been disabled, and having seen the light, we finally got approval to enable the firewall, but I am hitting a learning curve with Intune behaviors; I have a device where the firewall is enabled, and I get an admin prompt for an app that wants access. I cancel the admin prompt and do a little digging on what app wants access, and to what etc. and then create the policy to allow traffic inside of Intune. I thought the policies were not applying, but after poking around, I found that they are applied and listed under Monitoring > Firewall instead of the normal Inbound or Outbound Rules sections. However, because I canceled the admin prompt to allow the traffic, it automatically created a Block policy on the Inbound Rules section. Inside of Monitoring > Firewall I can see both the Block policy from the Inbound Rules, but also the Allow policy from Intune. Question: Is there a way to use the cloud Intune/Defender policy to wipe out the Block on the Inbound Rules section? Or do I need to make a remediation script to clean these up? Or is there some other 'best practice' way to clean up the unintended blocks from the local policy?CaedenVDec 05, 2024Copper Contributor4Views0likes0CommentsFile types restriction on Android OneDrive
Hi guys, I have an intune to manage android tablet in my company and I am trying to make a policy to restrict downloading (Make available offline), but i don't know how to achieve that. i can't find anything relevant in internet. I would really appreciat it if anyone can help me with that. Summary of the desired result: users of android tablets can make sharepoint folders available offline but only for specific files (pdf, docx,pptx,xlsx) and other file types shouldn't be available offline because of their big size such as (dwg,dxf,stp). Thank you in advance!Yahmed765Dec 05, 2024Copper Contributor24Views0likes1CommentAndroid Kiosk devices not updating
In intune we have kiosk devices running on manged home screen as a kiosk launcher. system update are set to "automatic" but the devices never recieve any system updates they are stuck at 13 even though i can update it manually to 14.. We have also deployed 2 system apps (found a reddit link) also deployed it in the kiosk. com.sec.android.soagent com.wssyncmldm the devices are not on wifi. anyone else experience this with their kiosk devices?MichaelRavnDec 05, 2024Brass Contributor27Views0likes0Comments
Resources
Tags
- Intune3,888 Topics
- Mobile Device Management (MDM)2,112 Topics
- Mobile Application Management (MAM)771 Topics
- Conditional Access427 Topics
- Software Management394 Topics
- Graph API228 Topics
- Azure Friday152 Topics
- Autopilot103 Topics
- Android62 Topics
- iOS51 Topics