Forum Discussion
Devices in AAD not showing in InTune
Hi All, We run a hybrid domain with an on-prem domain controller and sync to Azure AD. The problem I have is getting machines to register in our intune, they are listed in azure AD as "Azure AD ...
Thanks for the feedback.
I have checked the AD Connect settings and AAD, I believe we are syncing correctly.
If I go ahead and create a test OU and apply the auto-enrollment GPO should that work?
Hi Mat,
Two thing you need to do to have Hybrid AD join Machines:
1. Configure Hybrid AD Join from ADConnect and then sync to have showing in AAD as Hybrid AAD joined devices.
Check Configure Hybrid Azure AD Join section:
https://docs.microsoft.com/en-us/azure/active-directory/devices/hybrid-azuread-join-managed-domains
2. Then assign the proper Intune license and enroll the devices using either Gpo or manually.
https://docs.microsoft.com/en-us/windows/client-management/mdm/enroll-a-windows-10-device-automatically-using-group-policy
Hope this helps!
Moe
Two thing you need to do to have Hybrid AD join Machines:
1. Configure Hybrid AD Join from ADConnect and then sync to have showing in AAD as Hybrid AAD joined devices.
Check Configure Hybrid Azure AD Join section:
https://docs.microsoft.com/en-us/azure/active-directory/devices/hybrid-azuread-join-managed-domains
2. Then assign the proper Intune license and enroll the devices using either Gpo or manually.
https://docs.microsoft.com/en-us/windows/client-management/mdm/enroll-a-windows-10-device-automatically-using-group-policy
Hope this helps!
Moe
Thanks for the info Moe_Kinani
will enabling the Hybrid AD Join have any other impact to users logging in. I would hate for people to not be able to login against our on prem DC's or such like!
- Nothing will break, except if you remove their record as Azure AD registered (they get prompted to login again). I would wait to see them Hybrid AzureAD joined with MDM and last checking time then delete Azure AD registered.
I remember started with syncing only one Workstation from AD, checked everything working as expected then synced all other workstations. Here is how to sync specific OUs, use the article below:
https://www.google.com/amp/s/dirteam.com/sander/2019/10/29/howto-use-domain-and-ou-filtering-to-limit-the-objects-in-scope-for-azure-ad-connect/amp/
Moe