This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 17%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENM%3C/text%3E%3C/svg%3E)
Hi, I am trying to enroll devices to my company's 365 Defender for Endpoint. Azure AD shows all of our devices just fine, but they have not been onboarded to Defender and we cannot seem to find a way of doing so.
All devices show enabled, and as you can see in the picture just some of them show MDM Microsoft Intune.
All devices were joined via Settings > Accounts > Access work or school > Join this device to Azure Active Directory
Most of the devices have the same Owner, and some of those devices to have Microsoft Intune as MDM, some others have None
MDM user scope is set to "All" and MAM user scope is set to "None" in Windows enrollment > Automatic Enrollment
(Pay no mind to the Android device, we do not care for it to join Defender)
@Anonymous Thanks for posting in our Q&A.
For this issue that MDM shows none, we appreciate your help to collect some information:
If all the above are normal and this issue still exists, please check if there is any error message about enrollment under Applications and Services Logs/Microsoft/Windows/DeviceManagement-Enterprise-Diagnostics-Provider/Admin in Event Viewer in the affected device.
If there is anything update, feel free to let us know.
If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
@Anonymous I am currently standing by for further update from you and would like to know how things are going. If you have any update, please don't hesitate to let me know.
Hi. New devices were successfully onboarded to Endpoint Manager (but not Microsoft Defender for some reason). For devices that were already in Azure AD I had to manually edit Group Policy in each of them to enroll them to Intune. Thanks!
@Anonymous Thanks for your update. I'm glad to hear that the devices are enrolled to intune.
For onboarding devices to Microsoft Defender for Endpoint, please make sure that the connection is "On" and use EDR policy to onboard windows devices. For more details, please refer to the following article:
https://learn.microsoft.com/en-us/mem/intune/protect/advanced-threat-protection-configure
Hope it will help.