SOLVED

Enrolling Hybrid-AD joined device to Intune endpoint managemt

%3CLINGO-SUB%20id%3D%22lingo-sub-1504201%22%20slang%3D%22en-US%22%3EEnrolling%20Hybrid-AD%20joined%20device%20to%20Intune%20endpoint%20managemt%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1504201%22%20slang%3D%22en-US%22%3E%3CP%3EI%20have%20a%20on-premise%20AD%20connected%20with%20AD%20Connector%20with%20Azure%20AD.%3C%2FP%3E%3CP%3EMy%20Windows%20devices%20already%20has%20SCCM%20agent%20intalled%20and%20also%20have%20Co-management%20SCCM%20configured%20for%20a%20Pilot.%3C%2FP%3E%3CP%3ENow%20I%20want%20enroll%20those%20devices%20to%20my%20Intune%20MDM.%3C%2FP%3E%3CP%3EI%20want%20to%20know%20if%20the%20GPO%20with%20%22Register%20domain-joined%20computer%20as%20devices%22%20and%20%22Enable%20automatic%20MDM%20enrollment%20using%20default%20Azure%20AD%20credentials%22%20are%20requiered%20simultaneously%20with%20SCCM%20Co-management%20(Pilot)%20enabled%20or%20if%20only%20one%20of%20those%20are%20enough.%3C%2FP%3E%3CP%3EThanks.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-1504201%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EMobile%20Device%20Management%20(MDM)%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1504377%22%20slang%3D%22en-US%22%3ERe%3A%20Enrolling%20Hybrid-AD%20joined%20device%20to%20Intune%20endpoint%20managemt%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1504377%22%20slang%3D%22en-US%22%3EHey%20Rafael.%20For%20co-management%2C%20you%20don't%20need%20those%20GPOs.%20GPOs%20only%20come%20into%20play%20if%20you're%20doing%20HAADJ%20%2B%20MDM%20without%20ConfigMgr.%20Just%20make%20sure%20you've%20set%20up%20AAD%20Connect%20for%20devices%20and%20are%20licensed%20for%20AAD%20P1%20with%20auto-enrollment%20configured%20properly.%20The%20rest%20is%20done%20in%20the%20ConfigMgr%20Co-Management%20Configuration%20Wizard.%3C%2FLINGO-BODY%3E
New Contributor

I have a on-premise AD connected with AD Connector with Azure AD.

My Windows devices already has SCCM agent intalled and also have Co-management SCCM configured for a Pilot.

Now I want enroll those devices to my Intune MDM.

I want to know if the GPO with "Register domain-joined computer as devices" and "Enable automatic MDM enrollment using default Azure AD credentials" are requiered simultaneously with SCCM Co-management (Pilot) enabled or if only one of those are enough.

Thanks.

 

1 Reply
best response confirmed by RafaelJimenez63 (New Contributor)
Solution
Hey Rafael. For co-management, you don't need those GPOs. GPOs only come into play if you're doing HAADJ + MDM without ConfigMgr. Just make sure you've set up AAD Connect for devices and are licensed for AAD P1 with auto-enrollment configured properly. The rest is done in the ConfigMgr Co-Management Configuration Wizard.