Autopilot Hybrid Join Problem

%3CLINGO-SUB%20id%3D%22lingo-sub-290735%22%20slang%3D%22en-US%22%3EAutopilot%20Hybrid%20Join%20Problem%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-290735%22%20slang%3D%22en-US%22%3E%3CP%3EI%20need%20some%20help%20debugging%20problems%20with%20this.%20I%20have%20the%20following%3A%3C%2FP%3E%3CP%3E1.%20ODJ%20connector%20installed%20and%20visible%20in%20Intune%3C%2FP%3E%3CP%3E2.%20Permissions%20for%20ODJ%20connector%20computer%20to%20create%2Fdelete%20computer%20objects%20in%20OU%3C%2FP%3E%3CP%3E3.%20Deployment%20profile%20with%20Hybrid%20join%20selected%2C%20domain%20and%20OU%20specified%20as%20well%20as%20machine%20prefix%3C%2FP%3E%3CP%3E4.%20OOBE%20parameters%20set.%3C%2FP%3E%3CP%3E5.%20Workstation%20with%201809%3C%2FP%3E%3CP%3E6.%20Device%20in%20Business%20Store%20with%20group%20membership%20and%20profile%20assignment%3C%2FP%3E%3CP%3E7.%20Intune%20group%20with%20machine%20as%20member%20and%20profile%20assigned%20to%20this%20group%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWhen%20I%20import%20the%20machine%20into%20the%20store%2C%20and%20sync%20with%20Intune%2C%20all%20the%20stuff%20that%20should%20happen%20seems%20to%20happen.%20AAD%20account%20is%20created%2C%20I%20manually%20add%20the%20device%20to%20the%20Intune%20group.%20Profile%20is%20assigned%20(by%20store).%20But%20when%20I%20run%20the%20setup%2C%20I%20get%20the%20old%20%22Something%20went%20wrong%22%20message%20(80004005)%20without%20a%20way%20it%20seems%20to%20debug%20this%20process.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAny%20help%20would%20be%20greatly%20appreciated.%20Thanks.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-291322%22%20slang%3D%22en-US%22%3ERe%3A%20Autopilot%20Hybrid%20Join%20Problem%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-291322%22%20slang%3D%22en-US%22%3E%3CP%3EIt%20turns%20out%20I%20was%20making%20a%20very%20bad%20assumption.%20My%20assumption%20was%20that%20specifying%20a%20deployment%20profile%20in%20the%20Microsoft%20Business%20Store%2C%20which%20carries%20down%20to%20Intune%2C%20would%20drive%20the%20deployment.%20As%20it%20turns%20out%20that%20is%20not%20the%20case.%20We%20need%20to%20have%20the%20devices%20in%20a%20group%20so%20that%20we%20can%20assign%20the%20deployment%20profile%20to%20that%20group.%20I%20was%20hoping%20to%20use%20the%20enrollment%20profile%20for%20a%20dynamic%20group%20assignment%20but%20that%20has%20not%20worked%20out.%20For%20now%2C%20I%20am%20using%20a%20dynamic%20group%20that%20looks%20at%20OrderId.%20My%20experience%20is%20that%20without%20an%20orderId%20this%20field%20contains%20the%20Autopilot%20deployment%20GROUP%20name.%20So%20I%20am%20working%20with%20dynamic%20groups%20that%20associate%20to%20values%20in%20the%20OrderId.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EOnce%20I%20had%20the%20device%20in%20a%20group%20that%20was%20assigned%20to%20the%20deployment%20profile%2C%20it%20did%20a%20domain%20join%20on%20the%20build%20and%20I%20am%20working%20from%20this%20point%20now.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-290763%22%20slang%3D%22en-US%22%3ERe%3A%20Autopilot%20Hybrid%20Join%20Problem%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-290763%22%20slang%3D%22en-US%22%3EI%20have%20the%20same%20problem.%20I%E2%80%99ll%20let%20you%20know%20if%20I%20manage%20to%20fix%20it%3C%2FLINGO-BODY%3E
Deleted
Not applicable

I need some help debugging problems with this. I have the following:

1. ODJ connector installed and visible in Intune

2. Permissions for ODJ connector computer to create/delete computer objects in OU

3. Deployment profile with Hybrid join selected, domain and OU specified as well as machine prefix

4. OOBE parameters set.

5. Workstation with 1809

6. Device in Business Store with group membership and profile assignment

7. Intune group with machine as member and profile assigned to this group

 

When I import the machine into the store, and sync with Intune, all the stuff that should happen seems to happen. AAD account is created, I manually add the device to the Intune group. Profile is assigned (by store). But when I run the setup, I get the old "Something went wrong" message (80004005) without a way it seems to debug this process.

 

Any help would be greatly appreciated. Thanks.

2 Replies
I have the same problem. I’ll let you know if I manage to fix it

It turns out I was making a very bad assumption. My assumption was that specifying a deployment profile in the Microsoft Business Store, which carries down to Intune, would drive the deployment. As it turns out that is not the case. We need to have the devices in a group so that we can assign the deployment profile to that group. I was hoping to use the enrollment profile for a dynamic group assignment but that has not worked out. For now, I am using a dynamic group that looks at OrderId. My experience is that without an orderId this field contains the Autopilot deployment GROUP name. So I am working with dynamic groups that associate to values in the OrderId.

 

Once I had the device in a group that was assigned to the deployment profile, it did a domain join on the build and I am working from this point now.