Apr 02 2021 09:34 AM
Hello,
I am using a pure cloud environment (Azure AD - Azure AD Domain Services - Windows Virtual Desktop). How can I use Intune / Endpoint Manater for the sessions hosts in the environment?
Thanks a lot
Stefan
Apr 02 2021 01:38 PM
Apr 06 2021 03:04 AM
Apr 07 2021 02:23 AM
@David Schrag - thanks for the link. Looks like the feature is scheduled for release in May 2021 according to the roadmap. Fingers crossed!
Apr 07 2021 07:12 AM
How do I get the machine into Azure AD?
I do not have an AD Connect running because it is a cloud-only environment. The domain services are provided via Azure AD Domain Services.
Apr 08 2021 09:53 PM
@Stefan Kießig you can use auto-enrollment configured in your AAD server in the cloud, check my post Enroll Windows Virtual Desktop a Microsoft Intune – Deployment MX
Apr 09 2021 12:35 AM
@DeploymentMX AD Connect does not work for me because I do not have an onPremise domain.
The domain functionality is provided by the Azure AD Domain Service.
Apr 09 2021 01:15 AM
@Stefan Kießig - I think the only (supported) way would be to spin up a traditional domain controller, e.g. in Azure so not on premise as such, install AD Connect and go from there. We had to retain an 'on-premise' domain controller for a line of business app. It was frustrating at the time, but proving useful for WVD and some other use cases.
Apr 09 2021 06:04 AM
May 27 2021 11:48 PM
Jun 08 2021 05:54 AM - edited Jun 08 2021 06:17 AM
@lukewilcock Hey Luke, But why aren't you are using Group policies for those devices.. I am just trying to understand whats wrong with on premise policy for those WVD devices and people are going with Intune policies. Apart from the external devices? I have a customer who is looking for managing WVD devices and they have on premise group policies.
Jun 08 2021 07:30 AM
@AK_MS - there isn't anything wrong with using Group Policy. Indeed it would make sense if that is your main method for securing your environments. We made a decision a couple of years ago to transition to Azure AD joined endpoints fully managed by Intune. We no longer use Group Policy and were very keen to avoid having to re-invent the wheel and try to mirror settings we already have set up in Microsoft Endpoint Manager.