@Thijs Lecomte Hi I have this issue, devices were currently Azure AD registered, but no compliance status, it says N/A but in Endpoint Manager it shows my Android device is Compliant. Now I have a duplicate of my Windows 10 VM which is now Hybrid Joined which I am trying to achieve. How do I enforce policies with these kind of joins? 

@Thijs Lecomte

@moe_kinani  I managed to get it working. My VM gets a red error page at the Windows Autopilot OOBE page, so I heard VMs dont support White Glove deployement? Should I disable this setting for my Enrolment policy? Neither can I sign into the end users Microsoft work/school account but there is connectivity and I can ping my domain.

Setup:

Intune Connector

Device writeback

Azure Hybrid join

Group for Devices, I am trying to do a Hybrid Join for the VM, added organization and Container Attributes as well as Delegation on the Intune DC connector

@Moe_Kinani Thanks it has worked but now one last issue, do I require the MDM GPO for auto enrollment? I think its conflicting with Autopilot, when I did a RSOP.MSC it shows an error and when I log on to the Client is says 

The security database on the server does not have a computer account for this workstation trust relationship