Forum Discussion
Is co-management (or hybrid) required for Azure-joined machines to access domain services?
Our company is using ZenWorks for our Windows 7 machines. We have begun deploying Windows 10 machines under Intune MDM (joining to Azure) with great success so far. We do not have SCCM in place (yet)...
Jason_Githensyou mentioned that co-management is required for AD+AAD joining.
So even if it won't allow for SSO, Windows 10 MDM'ed machines will be able to at least access these services when co-managed?
With AAD joined devices and AAD Connect synchronizing user accounts between AD and AAD, devices will realize when they see a domain controller and automatically get a Kerberos ticket for authenticating to domain-joined resources. So yes, the AAD joined machine will get single sign-on access to domain-joined servers, IIS sites, etc.