Wasn't really sure where I should post this question.
Our customer has Hybrid joined client devices, sccm and intune are running in comanagement pilot. Some clients log authentication error messages in Azure AD:
Device authentication failed, error code 50155
Associated application is "clientapp", resource is "intune-connect" - these were probably created by SCCM when setting up comanagement.
Sccm client log file "adaloperationprovider.log" shows multiple errors like the following:
* WAM token request failed. status 5, details 'aad wam extension error'
* failed to get aad token
* a generic error occured while acquiring user token... send an interactive authorization request for this user and resource..
The latter might be the key to the solution, but I do not know how I should edit the application or resource to be interactive. Appreciate any kind of advice :) BR, Ruslan