Computer ask to re-register when Non-Compliant

weirdtech · ‎Oct 24 2019

Hi,

We have machines that become non-compliant if they are outside our network for x amount of time. These machines become compliant once they connect to the corporate network.
When a user tries to access resources (MS apps) in this state (after regaining the compliance status), it's prompting the users to re-register in InTune (which creates duplicate invalid entries in Intune) instead of just giving them access to the App. (Outlook ex)

This doesn't happen in all machines but in a big chunk. Any setting that I might be missing?

Thank you!

Thijs Lecomte · ‎Oct 24 2019

How have you set up your Conditional Access policies? Do you require compliant devices?

weirdtech · ‎Oct 24 2019

Yeah, everything seems to be set, since a big chunk of machines work as expected, but some (decent amount) just ask to re-register. Was just wondering if there's a setting that would do this or something that is set up for these specific users instead of the actual machine itself.
If there's any logs that might prove usefull, let me know the location, please. The audit one doesn't show much.

Thank you

Thijs Lecomte · ‎Oct 24 2019

You should check the Sign Ins Log of Azure AD to check the device state and CA policies that are applied to the device when the device is asked to reregister

Computer ask to re-register when Non-Compliant

Computer ask to re-register when Non-Compliant

Re: Computer ask to re-register when Non-Compliant

Re: Computer ask to re-register when Non-Compliant

Re: Computer ask to re-register when Non-Compliant

Products (50)

Special Topics (27)

Video Hub (462)

Most Active Hubs

Most Active Hubs

Video Hub

Computer ask to re-register when Non-Compliant

Computer ask to re-register when Non-Compliant

Re: Computer ask to re-register when Non-Compliant

Re: Computer ask to re-register when Non-Compliant

Re: Computer ask to re-register when Non-Compliant