Forum Discussion
Subsequent device registration in Intune
Hello,
if anyone else needs this. I did the follwing on every single device:- Opend an cmd via Endpoint Security Software Live Response in System Context
- Executed C:\Windows\system32\deviceenroller.exe /c /AutoEnrollMDM
- To be secure - opened powershell.exe and set the MDM URLs
$key = 'SYSTEM\CurrentControlSet\Control\CloudDomainJoin\TenantInfo\*'
$keyinfo = Get-Item "HKLM:\$key"
$url = $keyinfo.name
$url = $url.Split("\")[-1]
$path = "HKLM:\SYSTEM\CurrentControlSet\Control\CloudDomainJoin\TenantInfo\\$url"New-ItemProperty -LiteralPath $path -Name 'MdmEnrollmentUrl' -Value 'https://enrollment.manage.microsoft.com/enrollmentserver/discovery.svc' -PropertyType String -Force -ea SilentlyContinue;
New-ItemProperty -LiteralPath $path -Name 'MdmTermsOfUseUrl' -Value 'https://portal.manage.microsoft.com/TermsofUse.aspx' -PropertyType String -Force -ea SilentlyContinue;
New-ItemProperty -LiteralPath $path -Name 'MdmComplianceUrl' -Value 'https://portal.manage.microsoft.com/?portalAction=Compliance' -PropertyType String -Force -ea SilentlyContinue; - C:\Windows\system32\deviceenroller.exe /c /AutoEnrollMDM
- Checkt everything with dsregcmd /status
Now waited 10-15 Minutes. The devices appeared first in Entra with Intune as MDM. Than they appeared in Intune.
It was a lot oft work to execute those commands on every single device. But it was better than opening a Remote maintenance on every dev
Hello,
if anyone else needs this. I did the follwing on every single device:
- Opend an cmd via Endpoint Security Software Live Response in System Context
- Executed C:\Windows\system32\deviceenroller.exe /c /AutoEnrollMDM
- To be secure - opened powershell.exe and set the MDM URLs
$key = 'SYSTEM\CurrentControlSet\Control\CloudDomainJoin\TenantInfo\*'
$keyinfo = Get-Item "HKLM:\$key"
$url = $keyinfo.name
$url = $url.Split("\")[-1]
$path = "HKLM:\SYSTEM\CurrentControlSet\Control\CloudDomainJoin\TenantInfo\\$url"New-ItemProperty -LiteralPath $path -Name 'MdmEnrollmentUrl' -Value 'https://enrollment.manage.microsoft.com/enrollmentserver/discovery.svc' -PropertyType String -Force -ea SilentlyContinue;
New-ItemProperty -LiteralPath $path -Name 'MdmTermsOfUseUrl' -Value 'https://portal.manage.microsoft.com/TermsofUse.aspx' -PropertyType String -Force -ea SilentlyContinue;
New-ItemProperty -LiteralPath $path -Name 'MdmComplianceUrl' -Value 'https://portal.manage.microsoft.com/?portalAction=Compliance' -PropertyType String -Force -ea SilentlyContinue; - C:\Windows\system32\deviceenroller.exe /c /AutoEnrollMDM
- Checkt everything with dsregcmd /status
Now waited 10-15 Minutes. The devices appeared first in Entra with Intune as MDM. Than they appeared in Intune.
It was a lot oft work to execute those commands on every single device. But it was better than opening a Remote maintenance on every dev