Forum Discussion

michaelsjodin's avatar
michaelsjodin
Brass Contributor
Jan 27, 2021
Solved

Windows 10 automatic enrollment on a new device

Hi   I have Windows 10 automatic enrollment for new computers that join the Domain. If i have a newly installed device and login to it after a while the join is completed and the device is now in I...
Intune
  • v-mysan's avatar
    v-mysan
    Jan 27, 2021

    michaelsjodin 

     

    Aside from the troubleshooting steps in the article, make sure the account signing on to Windows is synchronized to Azure AD and has permissions to auto-enroll devices.  The scheduled task created by the GPO uses that account for authentication.

     

    In my lab, I have had cases where a user did not sign on during the 24 hour period the scheduled task runs for and had to wait until the GPO refreshed and created the task again.  In those cases, a gpupdate /force worked so long as the user had local administrator permissions.

     

    Other than that, you wait.

michaelsjodin's avatar
michaelsjodin
Brass Contributor
Jan 27, 2021
Hi

They are Hybrid Azure AD Joined with a GPO and i wonder if there is any faster way to make this happen then just wait or logging in with the users credentials under "accounts". running a gpupdate /force is not helping either.
v-mysan's avatar
v-mysan
Former Employee
Jan 27, 2021

michaelsjodin 

 

Aside from the troubleshooting steps in the article, make sure the account signing on to Windows is synchronized to Azure AD and has permissions to auto-enroll devices.  The scheduled task created by the GPO uses that account for authentication.

 

In my lab, I have had cases where a user did not sign on during the 24 hour period the scheduled task runs for and had to wait until the GPO refreshed and created the task again.  In those cases, a gpupdate /force worked so long as the user had local administrator permissions.

 

Other than that, you wait.

Resources