Jan 15 2022 10:11 PM
Device is showing as non-compliant, when we click on the device-->Device Compliance, it shows multiple users on the same device, some showing compliant and some showing Not Compliant.
Question:
How the device compliance is decided when multiple users sign-in on a device?
Thanks
SM
Jan 15 2022 11:36 PM - edited Jan 16 2022 10:26 AM
Hi
It sort of says it here :
https://docs.microsoft.com/en-us/mem/intune/protect/create-compliance-policy#before-you-begin
"Enroll devices to one user, or enroll without a primary user. Devices enrolled to multiple users aren't supported."
Resume: Intune will track compliance for every user on that device, so if one fails... the whole device fails... And this is done for every user who logs in..
Did you also tried with a device with the primary user removed, so it really becomes a shared device?
Jan 16 2022 02:05 PM
Jan 16 2022 10:27 PM
Jan 16 2022 11:25 PM
Jan 16 2022 11:40 PM
I know :) compliance policies are not very well written about.... (creating a blog about it ... but I need to find some time I guess)
Compliance policies are only to measure something (except password policies on mobile devices if I am not mistaken... as they sort of enforce a user to change their password)
So you will need to have something to sort off enforce an action when its not compliant --> Conditional access... If --> then
Aug 17 2022 02:04 PM
Whenever we enroll a device using a DEM user then change the primary user from endpoint manager , why does the device become non-compliant after some days , any clue @Rudy_Ooms_MVP
Aug 17 2022 10:23 PM
Sep 15 2023 12:59 AM
@Rudy_Ooms_MVP did you ever got time to wrote a blog about it
I am facing issue where only single user is being showing non compliant for any device he sets up intune after some time shows compliant in intune but device never become compliant.
Sep 19 2023 02:05 PM