Forum Discussion
Intune Enrollment via GPO User eXperience
My environment is as follows:-
On Premise AD
Hybrid Azure AD Joined devices using AD Connect
I was also facing the same situation where the status of the MDM was None rather than Microsoft Intune for my Windows 10 devices.
Ambarish I followed that extra step to Register domain joined computers as devices and now it seem to work. I would why this setting is needed given the device is already Hybrid Azure AD Joined?
Previously I did get this to work but only when the device was line of sight to my on premise AD. i.e. in the office. So I thought that was just the limitation of auto enrolment.
Because all my users are now WFH due for COVID I will need to try this with some other devices but it now looks more positive.
Chris-Yue It is actually required as part of the GPO Policy for Hybrid-joined devices. It should be worth noting that when configuring GPO for devices, you only need to change Computer Config policies and never duplicate the same policy on the User Config.
Here's a preview of mine.
- Chris-YueSep 11, 2020Iron Contributor
Thanks for the tip.
On the articles I have seen, I saw reference to Enable automatic MDM enrolment using default Azure Ad but not the device registration one.
Another thing I have noticed is the following.
Where a user picture has been assigned to Office 365, which is visible in office.com and mobile apps, should this appear on Windows 10 devices at the login screen?
I got this once, but since retiring the device and re-enrolling again, I don't see it anymore.