Forum Discussion
Solved
Intune License for Device Enrollment Manager accounts
Hi all, I am new to Intune and was assigned to a project to enroll all company Windows desktop to Intune. I would like to assign myself as a DEM and start the enrollment. What I am not sure h...
Hi,
A good practice would be to create a dedicated user and assign an Intune license to this user. Then assign the Device Enrollment Role to it. This allows you to enroll up to 1000 devices.
If you have Azure AD Joined devices, they are already enrolled in Intune (Endpoint Manager). You maybe need to configure the proper settings first (Autoenrollment, DNS). But it requires Azure AD P1.
Also have a look at the device enrollment restriction policies. They do not apply to Device Enrollment Managers for Windows:
Each user who is using Intune (Apps, Profiles, Policies, etc) needs a license.
If you have shared devices, Kiosk or Signage for example, you can use "Intune Device-only" licenses. This licenses do not need to be assigned to any device or user.
Hope this helps,
Cheers,
Al
A regular user can enroll 15 devices.
A DEM (with an Intune license) can enroll 1000.
If you would assign yourself the DEM role, then you can enroll 1000 devices. Either way, I would recommend that you don't assign the DEM role to your own account, but to an admin account. Otherwise, your regular account will have 1000 devices coupled with it.
What is your current environment? Are you devices AD joined/ AAD joined...? There might be a more automated solution for this
A DEM (with an Intune license) can enroll 1000.
If you would assign yourself the DEM role, then you can enroll 1000 devices. Either way, I would recommend that you don't assign the DEM role to your own account, but to an admin account. Otherwise, your regular account will have 1000 devices coupled with it.
What is your current environment? Are you devices AD joined/ AAD joined...? There might be a more automated solution for this
- HI Thijis,
I enabled my admin account as a DEM account profile but still am getting error limit is exit , can you help me out this problem with your advise , once add it has any timeline to reflect ? Hi Thijs Lecomte ,
Thanks for your information.
The business has an AAD but not any AD, so I would say it requires only AzureAD-joined devices. Also, around 100 workstations already AAD-joined and it is looking for a Device Management solution so I would suggest Intune.
I found this information from Microsoft: If a device is used by more than one user, each requires a device software license or all users require a user software license. (URL: https://docs.microsoft.com/en-us/mem/intune/fundamentals/licenses-assign)
I tried to save cost by using user-based license as it can be used for up to 15 devices and to minimise the management, I would use a DEM to join all devices (I may misunderstand about the purpose of DEM). Everything seems ok except the licensing, e.g., with 1,000 joined devices, how the license will be allocated if we use user-based approach?
Any advice are more than welcome!
Cheers,
- DEM seems like the right solution then indeed.
For licensing (Let me start off by saying that I am no expert), but every user that uses a device that is managed by Intune, should also be licensed for IntuneThanks Thijs Lecomte,
I will wait for more advice and also test how the license works. Will share here later on.
Cheers,
