Endpoint Manager / Intune AutoJoin different local domain

Steven 1 Reputation point
2020-10-03T00:43:01.89+00:00

Hi everyone,

I have a problem with Endpoint Manager / Intune deployment. I've follow several examples, have even worked with a consultant and not getting this resolved.

Trying to get group policy to deploy our domain joined PC to Auto Join Azure / Intune.

We've configured GPO policy "Enable automatic enrollment using default Azure AD credentials.". We are getting the following error:

Auto MDM Enroll: Device Credential (0x0), Failed (The system tried to delete the JOIN of a drive that is not joined.)

Not sure, but wondering, could this have anything to do with our forest / child domain being blah.corp (non publicly rotatable) but our Azure / O365 / Intune is set to blah.com com not corp.

If I do a manual user join from the control and join via user@soodyogesh .com it connects. I can push Intune polices.

Any help would be great.

Thanks,

Microsoft Intune Enrollment
Microsoft Intune Enrollment
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Enrollment: The process of requesting, receiving, and installing a certificate.
1,244 questions
0 comments

3 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Jason Sandys 31,151 Reputation points Microsoft Employee
    2020-10-04T19:46:49.863+00:00

    What Windows 10 version?

    Have you explored using Autopilot?

    0 comments
  2. Steven 1 Reputation point
    2020-10-04T20:54:55.467+00:00

    Windows 10, build 18363.

    Looking at Autopilot for new PC's, but this is for our existing deployments.

  3. AndyLiu-MSFT 576 Reputation points
    2020-10-05T04:02:25.453+00:00

    @Steven

    Please check the followings:

    1. In Azure AD portal, please search for the device, and check the joined type is Hybrid Azure AD joined.
    2. Check the AD user account signing in the Windows device, has been synced to the Azure AD correctly.
    3. Check the Intune license has been assigned to the AD account from Intune portal.

    If an Answer is helpful, please click "Accept Answer" and upvote it.
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.