AAD Devices not enrolled in Intune

Question

We have a hybrid AAD environement, with Intune device management for Windows PCs. Pretty much all of the new laptops I've deployed have had no issue enrolling into AAD and then Intune, but 2 have given me a problem where they appear as joined devices in AAD but never get added to Intune. I've checked the HKLM for MDM enrollment is enabled and did a gpudate on one of the affected machines, but it kicks back an error that the device is already enrolled. Not sure why, but it isnt in Intune and if I open Company Portal on that machine it says the device is managed by another organization, which is impossible.

Any other solutions that anyone suggests, short of a complete re-do of the domain join and AAD enrollment which I'd like to avoid if possible, would be appreciated!

eliekarkafy · Answer

check the below registry keys, delete them, reboot your machine and retry the Intune enrollment.HKLM:\SOFTWARE\Microsoft\Provisioning\OMADM\AccountsHKLM:\SOFTWARE\Microsoft\Enrollments

dantrecc · Answer

I'll give that a try and see what happens, and reply with results thanks!

eliekarkafy · Answer

DanTrecc&nbsp;check the event viewer to see what errors are occurring when the device is trying to apply the GPO of Intune auto enrollment. Your GPO is set to use user credentials? and your logging in to the device using a user that already licensed for Intune and with the format email address removed for privacy reasons&nbsp;&nbsp;&nbsp;

dantrecc · Answer

GPO is set to user creds, yes and user is licensed for Intune, they have the same license as all the other users whose machines are working as expected. I will check the logs in event viewer and see what is listed. It may take time as the user is not always free for me to poke around their machine haha.

dantrecc · Answer

Seems like no luck, the device still shows no MDM assigned in Azure AD. I'll give it a bit more time to see if anything changes.

Forum Discussion

AAD Devices not enrolled in Intune

Share

Resources