Home

Azure AD Join from PC in different AD

%3CLINGO-SUB%20id%3D%22lingo-sub-657878%22%20slang%3D%22en-US%22%3EAzure%20AD%20Join%20from%20PC%20in%20different%20AD%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-657878%22%20slang%3D%22en-US%22%3E%3CP%3EHi%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20have%20situation%20that%20I%20don't%20have%20idea%20or%20way%20to%20do.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWe%20are%20using%20Office%20365%20with%20EMS%20and%20trying%20to%20enroll%20those%20Windows%2010%20PCs%20into%20Intune.%26nbsp%3B%20We%20use%20ADFS%20for%20authentication%20because%20of%20the%20other%20application%20needs.%3C%2FP%3E%3CP%3EEnrolling%20those%20PCs%20joined%20to%20the%20AD%20connecting%20with%20Azure%20AD%20is%20not%20much%20of%20the%20problem.%3C%2FP%3E%3CP%3EWe%20also%20have%20subsidiaries%20with%20their%20own%20AD%20and%20using%20our%20Office%20365.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWe%20are%20trying%20to%20enroll%20those%20subsidiary%20user%20PCs%20into%20Intune.%26nbsp%3B%20However%2C%20when%20it%20tries%20to%20enroll%20workplace%2C%20it%20requires%20PC's%20local%20administrator%20rights.%26nbsp%3B%20Those%20users%20do%20not%20have%20local%20administrator%20rights%20on%20their%20PCs.%20%26nbsp%3B%3C%2FP%3E%3CP%3EIs%20there%20any%20way%20to%20make%20those%20subsidiary%20PCs%20to%20join%20Azure%20AD%20without%20much%20of%20the%20work%20since%20there%20could%20be%20thousands%20of%20PCs.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20appreciate%20if%20anyone%20can%20share%20the%20experience%20or%20idea.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHiroshi%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-657878%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAzure%20AD%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EEMS%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EIdentity%20Management%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Hiroshi77
New Contributor

Hi,

 

I have situation that I don't have idea or way to do.

 

We are using Office 365 with EMS and trying to enroll those Windows 10 PCs into Intune.  We use ADFS for authentication because of the other application needs.

Enrolling those PCs joined to the AD connecting with Azure AD is not much of the problem.

We also have subsidiaries with their own AD and using our Office 365.

 

We are trying to enroll those subsidiary user PCs into Intune.  However, when it tries to enroll workplace, it requires PC's local administrator rights.  Those users do not have local administrator rights on their PCs.  

Is there any way to make those subsidiary PCs to join Azure AD without much of the work since there could be thousands of PCs.

 

I appreciate if anyone can share the experience or idea.

 

 

Hiroshi

 

 

1 Reply
What version of Windows 10? We had a similar issue with BitLocker that has now been resolved with 1809.
Related Conversations
Tabs and Dark Mode
cjc2112 in Discussions on
46 Replies
Extentions Synchronization
Deleted in Discussions on
3 Replies
Stable version of Edge insider browser
HotCakeX in Discussions on
35 Replies
flashing a white screen while open new tab
Deleted in Discussions on
14 Replies
How to Prevent Teams from Auto-Launch
chenrylee in Microsoft Teams on
29 Replies
Security Community Webinars
Valon_Kolica in Security, Privacy & Compliance on
13 Replies