Jul 20 2022 10:03 AM
Hi,
I was hoping to get some guidance on the below request.
We have devices deployed at various different clients functioning as remote PRTG probe devices. These devices are currently workgroup devices and the management of them is tedious to say the least. The idea I had was to manage these devices with Intune thus giving us the ability to patch etc. them and ensure they are compliant and has up to date security protection.
Would this be possible using device only licenses and would I be able to manage all of them with a single service account?
Any advice or alternative solutions would be welcomed.
Jul 20 2022 10:54 AM - edited Jul 20 2022 10:56 AM
@MorneVR Using of an device only license bring the following limitations:
If you only want to manage updates and compliance it should be possible.
Jul 21 2022 12:15 AM
Jul 21 2022 08:43 AM - edited Jul 21 2022 08:45 AM
This is possible to login to the device but I am not sure if this is the best solution. What about to create an own service account for each device (to be license-compliant) and assign the e3 license to this account insted of using the device only license.
Jul 21 2022 10:16 AM
@Jannik_Reinhard the idea is to keep costs down as the machines will only be used to monitor client environments. Interaction with the machines will be minimal but I would still like to keep them patched, secured and compliant as they are sitting in client networks.
Jul 21 2022 12:48 PM - edited Jul 21 2022 12:55 PM
@MorneVR :
When you deploy this device as a self-deploying device / kiosk pc it will work. The following enrollment types are supported for a device only license:
If you setup the device as an kiosk pc you also have an local user and you don't have an need for an additional AAD user.
A instruction how to configure an kiosk pc you can find here: Setup an Modern Kiosk PC – Modern Device Management (jannikreinhard.com)
When you setup the device not as a kiosk pc I think you need an licensed user to be compliant.