cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Issues on-boarding to MDE

Yash_Mudaliar
Iron Contributor

‎Oct 12 2022 05:59 AM

‎Oct 12 2022 05:59 AM

Issues on-boarding to MDE

Hello folks,

A common or not so common question :thinking_face:

Is it mandatory for a device to be 'Azure AD Joined' in order to be on-boarded to MDE?

I am using 'Configuration Profile ' to deploy the MDE agent on the devices.
The device which is Azure AD Joined appears on the device list although the one which is Azure AD registered, doesn't.
Although both the devices appear in the 'Success' section of the Configuration profile.

please share your insights!

2,925 Views
0 Likes
7 Replies
Reply
7 Replies
MikeSolom8

‎Oct 12 2022 11:19 AM

‎Oct 12 2022 11:19 AM

Re: Issues on-boarding to MDE

We are Hybrid Azure AD joined and configs profile works fine with the onboarding to MDE via MS Intune.. It just delays for Unknown or MDE under Managed by on MDE portal.. :)
0 Likes
Reply
Yash_Mudaliar

‎Oct 13 2022 05:50 AM - edited ‎Oct 13 2022 05:54 AM

‎Oct 13 2022 05:50 AM - edited ‎Oct 13 2022 05:54 AM

Re: Issues on-boarding to MDE

Actually, I realized today that it's not even about 'Joined' or 'Registered'. I managed to get the device Azure AD joined, still can't see it in MDE. I can fully manage the device from Intune apart from 'Updating the intelligence' (not sure why). I tried deploying the onboarding agent through the EDR policy as well and it shows 'Success' there, but no idea why the device won't appear in MDE. Ran the MDE client analyzer as well, all good there.

0 Likes
Reply
Jonhed

‎Oct 13 2022 06:39 AM

‎Oct 13 2022 06:39 AM

Re: Issues on-boarding to MDE

Did you check to see if the Sense service is running on the device?
If not, the onboarding did not succeed.

Also, did you use regular configuration profiles, or did you use the endpoint security policy?
https://learn.microsoft.com/en-us/mem/intune/protect/endpoint-security-edr-policy

Using the endpoint security EDR policy might be worth a try if you used the configuration profile.
0 Likes
Reply
Yash_Mudaliar

‎Oct 14 2022 02:48 AM

‎Oct 14 2022 02:48 AM

Re: Issues on-boarding to MDE

@Jonhed Yes, mate. I got to know the status of SENSE from the client analyzer and the logs didn't had any 'Error' entry. I used both configuration profile with the MDE template and then a EDR policy as well. These are separate time to avoid any conflicts.

Screenshot 2022-10-13 154624.png

Screenshot 2022-10-13 154611.png

0 Likes
Reply
jbmartin6

‎Oct 14 2022 05:42 AM

‎Oct 14 2022 05:42 AM

Re: Issues on-boarding to MDE

I've onboarded my personal devices, Windows and Linux, into MDE. None of them were joined to any AD or domain. I would say if you have a device that seems fine but isn't appearing in your MDE, check the SENSE event log.
0 Likes
Reply
Yash_Mudaliar

‎Oct 14 2022 11:33 PM

‎Oct 14 2022 11:33 PM

Re: Issues on-boarding to MDE

Depends on what method you used. I can use the local script and get it on-boarded quickly. But that would be too easy. I want to know what's preventing the device to be on-boarded via Intune. And yes, I'm also doing this with my personal device.
0 Likes
Reply
Jonhed

‎Oct 16 2022 07:49 AM - edited ‎Oct 16 2022 07:55 AM

‎Oct 16 2022 07:49 AM - edited ‎Oct 16 2022 07:55 AM

Re: Issues on-boarding to MDE

This really sounds like a weird situation, since the SENSE service running means it is onboarded to something.

Are you assigning the policies to devices in Intune, or users?

Is the registered device running a supported edition of Win10/Win11( Pro, Education, Enterprise Edition)

Also real long-shot question, but did you check to make sure that the MDE organization ID on the device matches your M365D tenant?
Not that there would be a reason for this being different, especially if you are using the same policies for both the Azure AD Joined device and the Registered device..

0 Likes
Reply