Forum Discussion

Davy Vermeir's avatar
Davy Vermeir
Copper Contributor
Dec 01, 2017

Windows 10 1709 mdm enrollment with standard user

As stated in the following doc https://docs.microsoft.com/en-us/windows/client-management/mdm/mobile-device-enrollment?tduid=(6d9cfe64c7f97cbf5debb8a6d3eb4acb)(81561)(2130923)(0b00jp53b94n)() 

It should be possible to add a Windows 10 device to MDM (Intune) with a standard user. If we try this we still got the message that we need to be an administrator. Anyone who has the same issue?

3 Replies

  • Jeppe Rasmussen's avatar
    Jeppe Rasmussen
    Former Employee
    Dec 11, 2017

    Did you find an answer to this question? We are having the same problem in another project. 

    • Davy Vermeir's avatar
      Davy Vermeir
      Copper Contributor
      Dec 17, 2017

      We send the request to Mircosoft. But until now no answer. 

      • Johannes Stockmann's avatar
        Johannes Stockmann
        Former Employee
        Feb 01, 2018

        Hello Davy,

         

        did you get a response to your question? There are several different ways on how to enroll a Windows 10 device and only some of them support low rights user. Can you share details on how you are trying to enroll the device.
        From what I understand you can use provisioning packages (Bulk Azure AD Join) to enroll the device. If you apply the package in OOBE you can configure the user that logs in later to be a LRU. To apply the package from your desktop I believe you still need to be an admin. This functionality was added in 1703.
        Another way added in 1709 was to do this through DJ++ and GP. If the machine is domain joined and registered in AAD you can use a group policy to enroll the device automatically to a MDM. The user on the machine can be a LRU.

        I hope this helps,
        Johannes