Windows Autopilot device preparation user-driven Microsoft Entra join: Set up Windows automatic Intune enrollment
Windows Autopilot device preparation user-driven Microsoft Entra join steps:
- Step 1: Set up Windows automatic Intune enrollment
- Step 2: Allow users to join devices to Microsoft Entra ID
- Step 3: Create a device group
- Step 4: Create a user group
- Step 5: Assign applications and PowerShell scripts to device group
- Step 6: Create Windows Autopilot device preparation policy
- Step 7: Add Windows corporate identifier to device (optional)
For an overview of the Windows Autopilot device preparation user-driven Microsoft Entra join workflow, see Windows Autopilot device preparation user-driven Microsoft Entra join overview.
Note
If automatic Intune enrollment is already set up, skip this step and move on to Step 2: Allow users to join devices to Microsoft Entra ID.
Set up Windows automatic Intune enrollment
In order for Windows Autopilot device preparation to work, devices need to be able to enroll in Intune automatically. Enrolling devices in Intune automatically can be configured in the Azure portal:
Sign in to the Azure portal.
Select Microsoft Entra ID.
In the Overview screen, under Manage in the left hand pane, select Mobility (MDM and WIP).
In the Mobility (MDM and WIP) screen, under Name select Microsoft Intune.
In the Microsoft Intune page that opens, under MDM user scope, select either All or Some:
If All is selected, all users can automatically enroll their devices in Intune.
If Some is selected, only users in the groups specified in the link under Groups can automatically enroll their devices in Intune. To add groups:
Select the link under Groups.
In the Select groups window that opens, select the desired groups to add. Make sure that the groups selected are Microsoft Entra user groups that contain the desired users.
Once all of the desired groups are selected, select Select to close the Select groups window.
In the Microsoft Intune screen, if any changes were made, select Save.
Next step: Allow users to join devices to Microsoft Entra ID
Related content
For more information on Windows automatic MDM/Intune enrollment, see the following articles: