Oct 19 2017 09:23 AM
We are a provider of Cloud Solutions are investigating extending this to management of the end points with Intune.
Intune works great from a compliance stand point but lacks the breadth of configuration options afforded with Group Policy.
Would a device enrolled in co-management be able to be controlled by Group Policy? Will there be any restrictions to this?
We are investigating solutions to users that have a highly mobile workforce. Intune has been great at deploying VPN settings to get them dialled back in to their existing infrastructure.
However with them no longer being Domain Joined devices we are missing the ease of configuration.
Can you envision a scenario where a VPN profile is deployed, connected a log on and allow for a standard processing of Group Policy?
Kind of like a cloud based traditional corporate infrastructure.
Oct 19 2017 09:55 AM
Oct 19 2017 09:57 AM
Additionally, you are not required to have Active Directory joined devices that are Co-Managed. What that means is that as you transition to modern management, you can reduce your dependence on Active Directory.
Oct 19 2017 11:40 AM
Oct 19 2017 11:44 AM
You do have to have SCCM to Co-Manage - that is the definition - Co-Manage is Intune & SCCM co-managing a device. However, you do not need the device to be joined to on-prem Active Directory to be co-managed. You may have the device AAD Joined or Hybrid AD/AAD joined and still co-manage with both SCCM & Intune.