Hi All What is the best way to enroll existing / live / already in use Azure AD Joined W10 devices into Intune? I have tried deep linking and get a privileges error. Info greatly appreciated

Orion-Skol In the Access work/school account you can enroll into MDM only. I just tested this in my lab and it works great

Thijs Lecomte This is the reason i had mentioned above that Intune enrollment is unprofessional and not acceptable. How many corporates will give users to local admin rights to enroll Intune? If your corporate does, good luck with compliance and Auditors. Why not create right click on endpoint.microsoft.com on devices and select to enroll MDM device? or with powershell?otherwise it is total Failure...

Thijs Lecomte I see big failure here if MS won't change this. This would be lack of security and compliance of many companies especially with financial companies. I think i would suggest my company to look for 3rd party MDM solution...good luck everyone.

HiYou should do this manually through the settings menu: https://docs.microsoft.com/en-us/intune-user-help/enroll-windows-10-device

The reality is there is no logical and painless way.

Enroll existing Azure AD Joined W10 Devices into Intune

27 Replies

Cafarelli
Copper Contributor
Feb 07, 2024
Old thread but maybe I can help others.
If you have a connected user with Entra ID UPN on the device. You can try in System context this command :
%windir%\system32\deviceenroller.exe /c /AutoEnrollMDM
Use PSEXEC or a shedule task to do that.
MAJIDAM
Brass Contributor
Jun 03, 2020
StuartK73HI Stuart did you work this out? I am having same issues as you trying to enrol devices in to Intune. Advice appreaciated
julien_Gfi
Copper Contributor
Dec 18, 2019
There is many way to enroll Windows 10 devices intune, the best simple way is use SCCM abd Comanagement when you already have PC enrolled in SCCM.

In this blog (https://microscott.azurewebsites.net/2018/08/31/managing-windows-10-with-intune-the-many-ways-to-enrol/) you have all different ways to enroll the a Windows 10 computer in Intune

Regards,
Julien
KrisDeb
Iron Contributor
Dec 18, 2019
The reality is there is no logical and painless way.
- StuartK73
  Iron Contributor
  Dec 18, 2019
  KrisDeb
  
  Oh dear
Thijs Lecomte
Bronze Contributor
Dec 18, 2019
Hi

You should do this manually through the settings menu: https://docs.microsoft.com/en-us/intune-user-help/enroll-windows-10-device
- StuartK73
  Iron Contributor
  Dec 18, 2019
  Thijs Lecomte
  
  This section, Work or School, is already connected to Azure AD when the devices were Azure AD Joined
  - Orion-Skol
    Brass Contributor
    Jun 03, 2020
    StuartK73
    I am in same boat. I have over 5k computers, joinned with AAD. No on premise servers, all clouds, neither has SCCM.
    Deep link will give user permission issue. The only way I found that you visit each user desk, unjoined with AAD and rejoined, during rejoined it will give user local admin rights. Plus, you need to know local admin rights.
    
    What a painful and totally unprofessional way to get in InTune. Feel the Intune Pain...

Forum Discussion

Enroll existing Azure AD Joined W10 Devices into Intune

27 Replies

Resources