cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED

Intune AzureAD auto MDM enrollment blocked by also allowing MAM?

Neil Goldstein
Iron Contributor

‎Feb 09 2018 04:16 PM

‎Feb 09 2018 04:16 PM

Intune AzureAD auto MDM enrollment blocked by also allowing MAM?

Setting up Intune AutoPilot from here:

https://docs.microsoft.com/en-us/windows/deployment/windows-autopilot/windows-10-autopilot#windows-a...

 

But when I look at the docs for auto-enrollment https://docs.microsoft.com/en-us/intune/windows-enroll#enable-windows-10-automatic-enrollment there is this warning:

 

       Important

  • If both MAM user scope and automatic MDM enrollment (MDM user scope) are enabled for a group, only MAM is enabled. Only MAM is added for users in that group when they workplace join personal device. Devices are not automatically MDM enrolled.

 

Question:

So is it possible to have auto-enrolled MDM through AzureAD/Intune with Auto-Pilot while also having automatic MAM for non-windows devices?

 

 

 

It almost seems as if the AzureAD MAM page has bad wording - 

"MAM User Scope" makes sense - but MDM scope should be an OR for "Device/User/Device+User"

 

 

Note: This is all for url:

portal.azure.com/#blade/Microsoft_AAD_IAM/ActiveDirectoryMenuBlade/Mobility

 

(I didn't copy/paste so I might have missed something)

 

Thanks!

 

 

2,673 Views
0 Likes
2 Replies
Reply
2 Replies
best response confirmed by Neil Goldstein (Iron Contributor)
Per Larsen

‎Feb 11 2018 01:31 AM

‎Feb 11 2018 01:31 AM

Solution

Re: Intune AzureAD auto MDM enrollment blocked by also allowing MAM?

hi

 

That MAM settigns is MAM for Windows - and have nothing to do with MAM for non-windows :)

The MAM settings in the documentaion is for MAM for Windows with out enrollment - hope it makes sense.

 

Kind Regards

Per Larsen

Enterprise Mobility MVP

Blog: https://osddeployment.dk

1 Like
Reply
RonFixedIt

‎Aug 03 2023 07:21 PM

‎Aug 03 2023 07:21 PM

Re: Intune AzureAD auto MDM enrollment blocked by also allowing MAM?

Nope - once again - clear as mud in MSFT documentation. Of course we're now in 2023 and all things are not equal. So, I posted a similar question today on this topic. In fact, I read that MDM takes preference over MAM when same users are assigned (or assigned ALL) if the device is CORPORATE and we have blocked PERSONAL devices under the Enrollment Device Restriction settings. Say what????
0 Likes
Reply
1 best response

Accepted Solutions
best response confirmed by Neil Goldstein (Iron Contributor)
Per Larsen

‎Feb 11 2018 01:31 AM

‎Feb 11 2018 01:31 AM

Solution

Re: Intune AzureAD auto MDM enrollment blocked by also allowing MAM?

hi

 

That MAM settigns is MAM for Windows - and have nothing to do with MAM for non-windows :)

The MAM settings in the documentaion is for MAM for Windows with out enrollment - hope it makes sense.

 

Kind Regards

Per Larsen

Enterprise Mobility MVP

Blog: https://osddeployment.dk

View solution in original post

1 Like
Reply