Forum Discussion
Solved
Question regarding Hybrid Azure AD join and policy
Hi, I got a question regarding Hybrid Azure AD Joined and policies assigned to UPNs. I read that "Hybrid Azure AD joined Windows 10 devices don't have an owner." from Microsoft Docs. I have...
- Hi,
Owner is something else than the (primary) user of the device ๐ . Should otherwise be weird that azure hybrid devices couldn't be managed with Intune ๐
Hi,
Looking at the screenshot you have hybrid enrolled devices into azure ad, but the Intune MDM is missing... no mdm --> no compliance
Please read these 2 blogs
https://call4cloud.nl/2021/08/the-battle-between-aadj-and-aadr/
https://call4cloud.nl/2021/08/the-death-of-compliance/
And did you configured this gpo like mentioned in this ms docs?
https://docs.microsoft.com/en-us/windows/client-management/mdm/enroll-a-windows-10-device-automatically-using-group-policy
Looking at the screenshot you have hybrid enrolled devices into azure ad, but the Intune MDM is missing... no mdm --> no compliance
Please read these 2 blogs
https://call4cloud.nl/2021/08/the-battle-between-aadj-and-aadr/
https://call4cloud.nl/2021/08/the-death-of-compliance/
And did you configured this gpo like mentioned in this ms docs?
https://docs.microsoft.com/en-us/windows/client-management/mdm/enroll-a-windows-10-device-automatically-using-group-policy
Thanks for you answer.
It was actually only a example screenshot I got from google. Not the tenant which I am setting up.
To answer your question regarding the GPO. I got brand new machines only, which are not domain joined at the moment, which I will do manually.
It was actually only a example screenshot I got from google. Not the tenant which I am setting up.
To answer your question regarding the GPO. I got brand new machines only, which are not domain joined at the moment, which I will do manually.
- Hi,
Ahhh okay.. ๐ Normally with hybrid and you configured intune, you will receive the apps and policies you configured in intune.. But maybe a stupid question... why do you want to go hybrid?- Hehe I don't want to, but the customer wants to. Tried to explain but in the end, you do what the customer wants ^^
Yeah, but not sure if it works to assign the policies to groups with members in it, since the hybrid azure ad joined machines is not "owned" by anyone.
I will see if anyone else answers as well if they have ran into any issues or done this setup ๐
Meanwhile, I will configure a test tenant.
Thanks for your replies Rudy, appreciate it ๐- Hi,
Owner is something else than the (primary) user of the device ๐ . Should otherwise be weird that azure hybrid devices couldn't be managed with Intune ๐