Forum Widgets
Latest Discussions
Intune MDM issues - Android
I am working on a new Android - personally owned with work profile setup and I cannot for the life of me find documentation on how to set the devices as personally owned vs Corp. When I enroll my device, every time it shows corp. Can anyone shed some light on this please or point me to an article that actually works? Thank you all!
Manage Windows computers on Intune without email accounts
We have a new customer with a strange requirement. Our developers will be on site in their offices. We have to provide them with computers and whatever software required to do their work. We also have to manage these computers; patching, MS Defender, etc. But they are not allowed to access our internal company resources. No access to our email, SharePoint, logon to our VPN, etc. They will have Internet access. We already manage our computers through Entra/Intune but we can't use that for this situation. Is it possible to setup a separate instance where we just need Intune to manage these laptops. No email accounts for the users. Just manage the devices only?Intune iOS VPP OneDrive crash on iPad 13 and works on iPad 11
Hi everyone, I’m at my wits' end with this issue. We have a small Intune deployment with a few company-owned iPad Pro devices. All devices are enrolled via Apple Business Manager using a user-assigned profile and modern authentication. We’ve deployed nine apps through VPP, primarily Microsoft 365 apps. The Company Portal and Microsoft Authenticator are used for SSO. Our setup includes six iPad Pro 13-inch models and two iPad Pro 11-inch models. The problem arises when launching OneDrive on a 13-inch device—it either crashes immediately or remains blank without loading any content. The iPad generates a log file which is attached to this thread. I’ve tried everything to diagnose the issue, including disabling all iOS policies (even SSO), but nothing seems to help. As a test, I enrolled one of the 11-inch iPads using the exact same user and procedure, and surprisingly, OneDrive works perfectly on the smaller device. All settings, policies, and permissions are identical across devices. Has anyone encountered a similar issue or have any suggestions? Thanks in advance!
Intune issue on Ubuntu 24.04
Hello, I installed Intune on Ubuntu 24.04 after a distro upgrade. The install went fine but the identity provider agent report the "Unable to derive key material as unable to find the derivation key for alias" error. Full trace: journalctl -u microsoft-identity-device-broker.service [...] nov 01 14:49:33 my-laptop microsoft-identity-device-broker[21822]: E/DeviceBrokerServiceOperation:generateDerivedKey: [2024-11-01 13:49:33 - thread_id: 17, correlation_id: ************************* - ] Unable to derive key material as unable to find the derivation key for alias: <redacted> nov 01 14:49:33 my-laptop microsoft-identity-device-broker[21822]: com.microsoft.identity.common.java.exception.ClientException: Unable to derive key material as unable to find the derivation key for alias: <redacted> nov 01 14:49:33 my-laptop microsoft-identity-device-broker[21822]: at com.microsoft.identity.device.broker.operation.DeviceBrokerServiceOperation.generateDerivedKey(DeviceBrokerServiceOperation.java:173) nov 01 14:49:33 my-laptop microsoft-identity-device-broker[21822]: at com.microsoft.identity.broker.dbus.services.impl.DeviceBrokerDBusV1Impl.generateDerivedKey(DeviceBrokerDBusV1Impl.java:212) nov 01 14:49:33 my-laptop microsoft-identity-device-broker[21822]: at jdk.internal.reflect.GeneratedMethodAccessor5.invoke(Unknown Source) nov 01 14:49:33 my-laptop microsoft-identity-device-broker[21822]: at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) nov 01 14:49:33 my-laptop microsoft-identity-device-broker[21822]: at java.base/java.lang.reflect. Method.invoke(Method.java:566) nov 01 14:49:33 my-laptop microsoft-identity-device-broker[21822]: at org.freedesktop.dbus.connections.AbstractConnection$2.run(AbstractConnection.java:816) nov 01 14:49:33 my-laptop microsoft-identity-device-broker[21822]: at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128) nov 01 14:49:33 my-laptop microsoft-identity-device-broker[21822]: at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) nov 01 14:49:33 my-laptop microsoft-identity-device-broker[21822]: at java.base/java.lang.Thread.run(Thread.java:829) I know that in theory its not supported on 24.04 but I have some contact who managed the app to work, they just didn't had that error. Does anyone know what the error mean? Ive already tried to uninstall all intune component + wiped the folders I found on my machine without success...Android Devices Not Evaluating
Hi All! I seem to encounter this kind of error several times a year for no apparent reason. It mainly happens on the Android side of things on newly created setups, and then corrects itself over time, which sometimes can be weeks. I recently created two Android dedicated device environments. Dynamic group linked to the enrolment profile name, etc etc I scan the device and follow the normal process, device get all the way to the end but doesn't receive its assigned apps. When I check in the Intune Admin Portal, the device is showing as not evaluated. There is no default compliance policy showing and its custom policy. When I click on Managed Apps, the list of apps the device is going to receive are showing as pending install. The Group Membership tab shows the correct dynamic group. So for me, the setup looks good. I have left the device for 24 & 48 hours in case its a sync issue. Enrolled the device via a different WiFi. Wiped the device and left it 24 hours before enrolling it. Checked spelling of groups etc. Anyone else experienced this issue, and found a solution? I have a Teams Meeting with our external support tomorrow, Have a good one
Sharepoint - OneDrive Sync
Hi all, (posted here but was asked to move to here: Sharepoint - OneDrive Sync - Microsoft Community in my company we use a sharepoint: https://xxx.sharepoint.com/Name%20Public/ i can open the site in edge, i can interact with the files and folders and i can push on the "sync" method and onedrive will start syncing manually. Now to my problem: In intunes Admincenter I have a configuration policy with: "Configure team site libraries to sync automatically (user)" as follows: Value: https://xxx.sharepoint.com/Name%20Public | 1c27e911-bb36-4ae7-8fd8-d3b68c4d6e8c Name: xxx Public The policy is successfully applied to the users. However, one drive does not start synchronisation. $OneDriveCmd = "C:\Program Files\Microsoft OneDrive\OneDrive.exe" Start-Process -FilePath $OneDriveCmd -ArgumentList "/url:$SiteURL /id:$LibraryID /automount" Results in an error, something like "cannot open program, url not readable" Path and library are given in variables to the script Does anyone have an idea for me
Onboarding Devices
Hello, I have a question regarding our Business Premium license. I connected three test devices to Intune, but since these users use BYOD (Windows 11 Home), I did not connect them to Azure AD. I am unsure why these devices are not onboarding, while only my cellphone has successfully onboarded after I installed Defender directly. If the problem is a Business Premium license, what is the best solution to manage users in Defender? Any advice would be greatly appreciated. Thank you.
