Forum Discussion
Can anyone help fot setup of specific devices that is synced to hybrid azure ad join?
hongwoo_jin You can configure specific PCs to hybrid join by using client side registry keys rather than setting up the hybrid join SCP in AADConnect - I use group policy preferences registry items to set these:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\CDJ\AAD\TenantId – REG_SZ – and set the value to your tenant ID (can be obtained from the Azure AD Overview screen)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\CDJ\AAD\TenantName – REG_SZ – and set the value to your primary domain (again this can be seen on the Azure AD Overview screen).
hongwoo_jin I've not had to edit anything - I made sure devices were being synced as well as users (so they should appear in Azure AD > Devices with a status of "Pending") and then set the two registry keys on the computers I wanted hybrid joined, ran dsregcmd /join and they hybrid joined. I've got 500 devices hybrid joined with this method (as our network configuration is incompatible with configuring hybrid join using AADConnect)
I cannot see any devices as pending status in azure active directory devices,
I created a domain controller then created o365 users syncing to o365 azure active directory using aad connect , then selected o365 users and speicific computer ou so that hybrid azure ad joined, I couldn't set hybrid azure ad join in aad connect. Can you give an advise to fix it?
As you mentioned before, if I can see devices in azure active directory on m365 portal, let me make group policy with which you gave two registry. I think you did setup MDM , no?
Thx
- Hi, CoasterKaty
You're right, I did it on my test lab following by your answer.
Thx