Forum Discussion
Device Limitations not working due to Azure Joined Windows
Unbeknownst to me, none of our Windows laptops that are auto-enrolled into InTune via Azure AD join are included with the device limitation so we can't "limit" a number of devices an Employee is to h...
Why not make sure you configure device restrictions, so people can't enroll their personal devices? (windows/ios/android)
As an example when blocking a personal windows device to be enrolled, only autopilot can be used. So you don't need to worry about the amount of device a user can enroll
https://call4cloud.nl/2021/08/the-battle-between-aadj-and-aadr/
Also another quick note: you could also make sure only users with the required license are only allowed to add a device
As an example when blocking a personal windows device to be enrolled, only autopilot can be used. So you don't need to worry about the amount of device a user can enroll
https://call4cloud.nl/2021/08/the-battle-between-aadj-and-aadr/
Also another quick note: you could also make sure only users with the required license are only allowed to add a device
We use Azure AD so a user won't be able to join their personal Windows devices to Azure so that's not our concern. Our concern is with users adding multiple Android devices. The conditional access policy does block them from using the apps and enforces InTune, but the group they are a member in allows Android so we need to then limit the number of Androids they can enroll.
- Hi.. could you explain the sentence "we use azure ad, so a user wont be able to join their personal windows devices to azure"
I assume you configured the device restriction to do so...
Looking back at the original question.. you didn't talked about android? or did i get it wrong
But if you are requiring compliant/enrolled android devices before they could access the data.. yes you need to enroll them.... maybe a better idea would be to use app protection on those devices instead of enrolling them all?