cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Autopilot profile is not assigned if a device already registered Azure AD

%3CLINGO-SUB%20id%3D%22lingo-sub-789852%22%20slang%3D%22en-US%22%3EAutopilot%20profile%20is%20not%20assigned%20if%20a%20device%20already%20registered%20Azure%20AD%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-789852%22%20slang%3D%22en-US%22%3E%3CP%3EWhen%20import%20device%20information%20for%20Autopilot%2C%20if%20the%20devices%20already%20registered%20to%20Azure%20AD%2C%20the%20profile%20status%20in%20Windows%20Autopilot%20devices%20have%20not%20changed%20from%20%E2%80%9DNot%20Assigned%E2%80%9D.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAfter%20deleting%20the%20device%20from%20both%20Autopilot%20devices%20and%20Azure%20AD%2C%20and%20import%20again%2C%20it%20has%20changed%20to%20%E2%80%9DAssigned%E2%80%9D.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EIt%20is%20the%20same%20behavior%20at%20import%20csv%20file%2C%20which%20created%20by%20PowerShell%20script%20manually%20or%20use%20Autopilot%20profile%20to%20convert%20targeted%20devices.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ENote%20that%20we%20had%20not%20applied%20Autopilot%20enrollment%20to%20all%20devices%2C%20and%20we%20use%20a%20security%20group%20referring%20%E2%80%9DZTDId%E2%80%9D.%20And%20a%20security%20group%20specified%20Azure%20AD%20devices%20for%20convert.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAnd%2C%20it%20seems%20when%20import%20csv%20file%20to%20Autopilot%2C%20devices%20register%20to%20Azure%20AD%20automatically.%20If%20we%20remove%20it%20from%20Azure%20AD%2C%20the%20device%20information%20will%20not%20re-register%20automatically.%20Or%20will%20it%20work%20with%20the%20security%20group%20of%20all%20Azure%20AD%20device%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20want%20to%20know%3A%3CBR%20%2F%3E1.%20Import%20Autopilot%20information%20of%20devices%20that%20already%20registered%20to%20Azure%20AD%20does%20it%20work%3F%3CBR%20%2F%3E2.%20With%20the%20security%20group%20reference%20ZTDId%2C%20does%20it%20work%3F%3CBR%20%2F%3E3.%20The%20best%20practice%20to%20register%20Autopilot%20information%2C%20that%20device%20already%20registered%20to%20Azure%20AD%20and%20Intune%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThank%20you%20for%20reading.%20If%20you%20know%20anything%20about%20it%2C%20please%20teach%20me.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-789852%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAutopilot%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EIntune%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1444051%22%20slang%3D%22en-US%22%3ERe%3A%20Autopilot%20profile%20is%20not%20assigned%20if%20a%20device%20already%20registered%20Azure%20AD%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1444051%22%20slang%3D%22en-US%22%3E%3CP%3EHaving%20the%20same%20issues%20here%20(UK)%26nbsp%3B%3C%2FP%3E%3CP%3EWhen%20importing%20Devices%20into%20the%20Autopilot%2C%20any%20devices%20using%20the%20%5BZTDId%5D%20are%20not%20having%20profiles%20assigned.%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20have%20also%20noted%20the%20'sync'%2C%20is%20roughly%20instant%2C%20this%20is%20abnormal%20as%20usually%2C%20it%20takes%20a%20few%20minutes%20before%20successful%20sync%20is%20reported%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F80144%22%20target%3D%22_blank%22%3E%40Nayuta%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1444464%22%20slang%3D%22en-US%22%3ERe%3A%20Autopilot%20profile%20is%20not%20assigned%20if%20a%20device%20already%20registered%20Azure%20AD%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1444464%22%20slang%3D%22en-US%22%3EHi%20Nayuta%2C%3CBR%20%2F%3E%3CBR%20%2F%3EThis%20is%20normal%20behavior%2C%20if%20you%20importing%20the%20devices%20using%20csv%20file%2C%20you%20need%20to%20make%20sure%20that%20the%20devices%20do%20not%20exist%20in%20Azure%20AD%20at%20all.%20If%20you%20have%20existing%20devices%20and%20you%20want%20to%20apply%20Auto%20Enrollment%20Deployment%20Profile%2C%20you%20just%20need%20hit%20yes%20on%20%E2%80%98Convert%20all%20Targeted%20device%20to%20Auto%20Pilot%E2%80%99.%3CBR%20%2F%3E%3CBR%20%2F%3EHope%20I%E2%80%99m%20understanding%20your%20scenario%20correctly!%3CBR%20%2F%3E%3CBR%20%2F%3EMoe%3CBR%20%2F%3E%3CBR%20%2F%3E%3CA%20href%3D%22https%3A%2F%2Fwww.google.com%2Famp%2Fs%2Fsecureinfra.blog%2F2019%2F10%2F31%2Fconvert-all-targeted-devices-to-autopilot%2Famp%2F%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fwww.google.com%2Famp%2Fs%2Fsecureinfra.blog%2F2019%2F10%2F31%2Fconvert-all-targeted-devices-to-autopilot%2Famp%2F%3C%2FA%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1445100%22%20slang%3D%22en-US%22%3ERe%3A%20Autopilot%20profile%20is%20not%20assigned%20if%20a%20device%20already%20registered%20Azure%20AD%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1445100%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F503735%22%20target%3D%22_blank%22%3E%40Moe_Kinani%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EIn%20my%20instance%2C%20the%20property%20'%3CSPAN%3EConvert%20all%20targeted%20devices%20to%20Autopilot'%20is%20already%20configured%20to%20yes.%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%3EHowever%2C%20Devices%20registered%20for%20autopilot%20are%20not%20pulling%20a%20profile.%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%3EThanks%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1450047%22%20slang%3D%22en-US%22%3ERe%3A%20Autopilot%20profile%20is%20not%20assigned%20if%20a%20device%20already%20registered%20Azure%20AD%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1450047%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F297554%22%20target%3D%22_blank%22%3E%40LurkingMedal140%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ECould%20you%20add%20the%20PCs%20to%20regular%20Security%20group%20and%20assign%20them%20to%20the%20deployment%20profile%3F%20It%20might%20be%20the%20dynamic%20group%20somehow%20dropping%20the%20PCs.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EMoe%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1450606%22%20slang%3D%22en-US%22%3ERe%3A%20Autopilot%20profile%20is%20not%20assigned%20if%20a%20device%20already%20registered%20Azure%20AD%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1450606%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F503735%22%20target%3D%22_blank%22%3E%40Moe_Kinani%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ESo%20I%20have%20raised%20this%20as%20an%20MS%20Support%20Ticket%2C%20they%20have%20informed%20me%20that%20currently%20there%20is%20various%20region%20issues%20with%20profile%20deployment%20using%20Windows%20Auto-Enrollment.%20These%20are%20backend%20issues%20and%20are%20currently%20being%20resolved.%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAlthough%20I%20have%20not%20seen%20any%20public%20comms%20from%20MS%20for%20this.%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1451558%22%20slang%3D%22en-US%22%3ERe%3A%20Autopilot%20profile%20is%20not%20assigned%20if%20a%20device%20already%20registered%20Azure%20AD%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1451558%22%20slang%3D%22en-US%22%3EFyi%2C%20Just%20tried%20it%20on%20my%20test%20tenant%20and%20worked%20fine.%3CBR%20%2F%3E%3CBR%20%2F%3EMoe%3C%2FLINGO-BODY%3E
Highlighted
Nayuta
Occasional Contributor

‎08-06-2019 04:10 AM

‎08-06-2019 04:10 AM

Autopilot profile is not assigned if a device already registered Azure AD

When import device information for Autopilot, if the devices already registered to Azure AD, the profile status in Windows Autopilot devices have not changed from ”Not Assigned”.

 

After deleting the device from both Autopilot devices and Azure AD, and import again, it has changed to ”Assigned”.

 

It is the same behavior at import csv file, which created by PowerShell script manually or use Autopilot profile to convert targeted devices.

 

Note that we had not applied Autopilot enrollment to all devices, and we use a security group referring ”ZTDId”. And a security group specified Azure AD devices for convert.

 

And, it seems when import csv file to Autopilot, devices register to Azure AD automatically. If we remove it from Azure AD, the device information will not re-register automatically. Or will it work with the security group of all Azure AD device?

 

I want to know:
1. Import Autopilot information of devices that already registered to Azure AD does it work?
2. With the security group reference ZTDId, does it work?
3. The best practice to register Autopilot information, that device already registered to Azure AD and Intune

 

Thank you for reading. If you know anything about it, please teach me.

Labels:
3,766 Views
1 Like
6 Replies
Reply
6 Replies
Highlighted
LurkingMedal140

‎06-05-2020 02:01 PM

‎06-05-2020 02:01 PM

Re: Autopilot profile is not assigned if a device already registered Azure AD

Having the same issues here (UK) 

When importing Devices into the Autopilot, any devices using the [ZTDId] are not having profiles assigned. 

 

I have also noted the 'sync', is roughly instant, this is abnormal as usually, it takes a few minutes before successful sync is reported

@Nayuta 

0 Likes
Reply
Highlighted
Moe_Kinani

‎06-05-2020 07:31 PM

‎06-05-2020 07:31 PM

Re: Autopilot profile is not assigned if a device already registered Azure AD

Hi Nayuta,

This is normal behavior, if you importing the devices using csv file, you need to make sure that the devices do not exist in Azure AD at all. If you have existing devices and you want to apply Auto Enrollment Deployment Profile, you just need hit yes on ‘Convert all Targeted device to Auto Pilot’.

Hope I’m understanding your scenario correctly!

Moe

https://www.google.com/amp/s/secureinfra.blog/2019/10/31/convert-all-targeted-devices-to-autopilot/a...
0 Likes
Reply
Highlighted
LurkingMedal140

‎06-06-2020 04:05 AM

‎06-06-2020 04:05 AM

Re: Autopilot profile is not assigned if a device already registered Azure AD

@Moe_Kinani 

 

In my instance, the property 'Convert all targeted devices to Autopilot' is already configured to yes. 

 

However, Devices registered for autopilot are not pulling a profile. 

 

Thanks 

0 Likes
Reply
Highlighted
Moe_Kinani

‎06-08-2020 09:16 PM

‎06-08-2020 09:16 PM

Re: Autopilot profile is not assigned if a device already registered Azure AD

@LurkingMedal140 

 

Could you add the PCs to regular Security group and assign them to the deployment profile? It might be the dynamic group somehow dropping the PCs.

 

Moe

0 Likes
Reply
Highlighted
LurkingMedal140

‎06-09-2020 04:02 AM

‎06-09-2020 04:02 AM

Re: Autopilot profile is not assigned if a device already registered Azure AD

@Moe_Kinani

 

So I have raised this as an MS Support Ticket, they have informed me that currently there is various region issues with profile deployment using Windows Auto-Enrollment. These are backend issues and are currently being resolved. 

 

Although I have not seen any public comms from MS for this. 

0 Likes
Reply
Highlighted
Moe_Kinani

‎06-09-2020 09:29 AM

‎06-09-2020 09:29 AM

Re: Autopilot profile is not assigned if a device already registered Azure AD

Fyi, Just tried it on my test tenant and worked fine.

Moe
0 Likes
Reply