Forum Discussion
Intune - Hybrid Active Directory with Autopilot
Hi,
I'm started to make some tests on Intune, but I had some struggles to register machines and also to understand some what the system does in background.
I follow the steps from Microsoft page (Link) and I think there is everything setup correctly. I choose this method because we have Active Directory on-premise that is synchronize with Azure AD, so this is an Hybrid Active Directory.
Also I setup Intune connector to synchronize all machines that we had register on our Active Directory (on-premise) and after that I was able to see all my machines.
My first doubt is something related with this (probably). Once we've our machines register in our Active Directory (on-premise) and they are synchronized with Azure AD, why do I need to create a Organization Unit (OU) in our Active Directory (on-premise) with Delegation Control?
Another question that I have is about Autopilot Deployment. I run the script "Get-WindowsAutoPilotInfo" on my machine to import it on Intune AutoPilot (that was imported successfully) after the import I check the Azure devices and my machine was duplicated, as you can see on the screenshoot:
The differences on the screenshoot is the "Hybrid Azure AD Joined" that is the synchronization from Intune connector and the "Azure AD Joined" is from AutoPilot import. I supose that second register is because I created a Device Configuration Profile (like as said on the link that I follow), see the screenshoot:
Do I really need this profile, once I already have the machine registered on Azure AD?
Thank you.
- Christian RedgewellCopper Contributor
I have this exact same issue, the device joins local AD, reboots I sign in, the device joins Azure AD and I end up with two devices in Azure AD. One shows as Azure AD and the other as Hybrid Azure Joined. I also noticed that the Company Portal fails to recognise the device is joined and the user is not shown as the owner in Azure AD.
- Christian RedgewellCopper Contributoris your environment using ADFS? I have just discovered that this is not supported
- tru_ldouradoCopper ContributorMy environment is not using ADFS. Where did you get that information?
Can you share it?
Thank you- Christian RedgewellCopper Contributor
this is the message I received from Intune Support As you requested, below are the details regarding the process of setting up Hybrid Azure AD join support for Autopilot:
Pre-requisites:
1. Intune 1810
2. Windows 10 with October 2018 update
3. Successfully configure Hybrid Azure Active Directory Join for Managed Domains
4. Federated domains are not supported at this time