Forum Discussion
Fix account sign in loop after device enrollment
Hello, We have an issue in our organization where some devices we enrol get in a sign in loop after a few days. More specifically, the way we've set up our environment is as follows: - Device...
Hello, thank you for your reply.
No conditional access but we do have a security baseline set for Defender which applies to the MEM group. I'm troubleshooting one of those devices currently and I have enrolled it to Intune but haven't added it to the MEM group in order to see if it develops the same issue. It usually happens after a couple of days so I should definitely know by tomorrow.
We went hybrid because we still need the on-premises MECM so Co-Management is the only option at this point. Dsreg shows everything is normal, as a successfully enrolled device.
No conditional access but we do have a security baseline set for Defender which applies to the MEM group. I'm troubleshooting one of those devices currently and I have enrolled it to Intune but haven't added it to the MEM group in order to see if it develops the same issue. It usually happens after a couple of days so I should definitely know by tomorrow.
We went hybrid because we still need the on-premises MECM so Co-Management is the only option at this point. Dsreg shows everything is normal, as a successfully enrolled device.
Hi, its indeed a good way to test if existing policies are giving you issues... please report back when you know if the base line could be the issue
- Hello, it does look like the security baseline is causing the issue. Thanks for pointing me in that direction. Now to find exactly which part of it is the cause!
Hi, thanx for replying back... I would love to hear what broke the account sign in from the security baseline.. (I am assuming you used the build in Security baseline for windows 10 or later?)
Maybe something to do with the credential guard being enabled or something like that?