Intune AzureAD auto MDM enrollment blocked by also allowing MAM?

Neil Goldstein

Setting up Intune AutoPilot from here:


But when I look at the docs for auto-enrollment there is this warning:



  • If both MAM user scope and automatic MDM enrollment (MDM user scope) are enabled for a group, only MAM is enabled. Only MAM is added for users in that group when they workplace join personal device. Devices are not automatically MDM enrolled.



So is it possible to have auto-enrolled MDM through AzureAD/Intune with Auto-Pilot while also having automatic MAM for non-windows devices?




It almost seems as if the AzureAD MAM page has bad wording - 

"MAM User Scope" makes sense - but MDM scope should be an OR for "Device/User/Device+User"



Note: This is all for url:


(I didn't copy/paste so I might have missed something)





1 Reply



That MAM settigns is MAM for Windows - and have nothing to do with MAM for non-windows :)

The MAM settings in the documentaion is for MAM for Windows with out enrollment - hope it makes sense.


Kind Regards

Per Larsen

Enterprise Mobility MVP


Related Conversations
Tabs and Dark Mode
cjc2112 in Discussions on
48 Replies
Extentions Synchronization
Deleted in Discussions on
3 Replies
Stable version of Edge insider browser
HotCakeX in Discussions on
35 Replies
How to Prevent Teams from Auto-Launch
chenrylee in Microsoft Teams on
30 Replies
flashing a white screen while open new tab
Deleted in Discussions on
14 Replies
Security Community Webinars
Valon_Kolica in Security, Privacy & Compliance on
13 Replies