autoenroll

2 Topics

Intune Re-Enrollment Registry Key "MmpcEnrollmentFlag"
Hey there, In the last few weeks, we encountered issues with clients (Entra Hybrid Joined) losing their Intune connection after setting an incorrect group policy. Although the group policy change was quickly reverted, about 10 clients were removed from Intune. I attempted to re-enroll these clients using various methods (MEMC Co-management, GPO, Scheduled Task, and even using psexec to directly start auto-enrollment), but the enrollment process consistently failed with the following error under Microsoft-Windows-DeviceManagement-Enterprise-Diagnostics-Provider\Enrollment: Auto MDM Enroll: Device Credential (0x1), Failed (Bad request (400).) and/or following in CoManagementHandler.log Failed to get management URL with error 0x80070002 Eventually, I discovered a registry key that was not present on the working clients: Path: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Enrollments Value: MmpcEnrollmentFlag Data: 0x00000002 After deleting this key and restarting the enrollment, everything worked immediately. I am curious about how and why this registry key is created and what its function is. Looking forward to your input.
Solved
fbatuns
Jun 17, 2025 Place Microsoft Intune
359Views
1like
2Comments
Intune autoenrollment failure
Windows 10, hybrid azure ad joined machine fails to autoenroll to intune. Eventlog shows error: MDM Policy Manager: Found bad enrollment () during merge. Deleting policies for the enrollment, Enrollment state is (0x3f). Evend ID 844. Task Scheduler is also missing all tasks under EnterpriseMgmt. GPO for autoenrollment is applying and keys are in the registry. Any ideas?
J X
Mar 18, 2020 Place Microsoft Intune
13KViews
0likes
1Comment