I am trying hybrid autopilot deployment, but I am getting the errorcode 80070774 after entering my credentials. What I have done: checked Intune Connector on my AD server: Yes it is active created a domain join config which I have assigned to the group/user, nevertheless intune admin center says its "not applicable" created a hybrid deployment profile which I have assigned to the users device tried to ping the DC and server where Intune Connector is installed: Successfully I also looked inside the event viewer but there are only events with ID 30121 (I dont have any filters activated), also I only can see event IDs in the "Operational" file (is this how it should be?):

@Stefan D, Thanks for posting in Q&A. From your description, I know you are doing Windows Autopilot user-driven Microsoft Entra hybrid join. But it is failed. For the domain join profile, I find you have assigned it to user group. In fact, the domain join profile applied before user sign in. Therefore, we see it not applicable when you assign it to user group. We need to assign it to the device group. Please change it and see if it can work. https://learn.microsoft.com/en-us/autopilot/tutorial/user-driven/hybrid-azure-ad-join-domain-join-profile Please try the above suggestion and if there's any update, feel free to let us know. If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment". Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

Hybrid autopilot deployment: Errorcode 80070774

Stefan D 0

I am trying hybrid autopilot deployment, but I am getting the errorcode 80070774 after entering my credentials.

What I have done:

checked Intune Connector on my AD server: Yes it is active
created a domain join config which I have assigned to the group/user, nevertheless intune admin center says its "not applicable"
created a hybrid deployment profile which I have assigned to the users device
tried to ping the DC and server where Intune Connector is installed: Successfully
I also looked inside the event viewer but there are only events with ID 30121 (I dont have any filters activated), also I only can see event IDs in the "Operational" file (is this how it should be?):

1 answer

Crystal-MSFT 49,271 Reputation points Microsoft Vendor

2024-06-27T04:01:27.34+00:00

@Stefan D, Thanks for posting in Q&A. From your description, I know you are doing Windows Autopilot user-driven Microsoft Entra hybrid join. But it is failed. For the domain join profile, I find you have assigned it to user group. In fact, the domain join profile applied before user sign in. Therefore, we see it not applicable when you assign it to user group. We need to assign it to the device group. Please change it and see if it can work.

https://learn.microsoft.com/en-us/autopilot/tutorial/user-driven/hybrid-azure-ad-join-domain-join-profile

Please try the above suggestion and if there's any update, feel free to let us know.

If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Please sign in to rate this answer.
Crystal-MSFT 49,271 Reputation points Microsoft Vendor

2024-07-01T01:32:34.9933333+00:00

@Stefan D, Hope things are going well. If there's any update, feel free to let us know.

Stefan D 0 Reputation points

2024-07-01T08:38:45.0833333+00:00

Thank you for trying to help me Crystal.

The problem is that I am not understanding what you mean with device group, as long as I know there are only groups where you can assign users to it. Am I misunderstanding something? Please let me know. Thank you!

Crystal-MSFT 49,271 Reputation points Microsoft Vendor

2024-07-01T09:35:38.7266667+00:00

@Stefan D, Thanks for the reply. Yes, we need to create a device group to assign. You can create a Dynamic group or Assigned group. Here is a link you can refer.

https://learn.microsoft.com/en-us/autopilot/tutorial/user-driven/hybrid-azure-ad-join-device-group

Stefan D 0 Reputation points

2024-07-01T14:16:53.32+00:00

@Crystal-MSFT Thank you, I will try your suggestion and reach out back to you after trying.

Crystal-MSFT 49,271 Reputation points Microsoft Vendor

2024-07-02T02:26:44.6566667+00:00

@Stefan D, Ok! Wait for your good news.

Stefan D 0 Reputation points

2024-07-02T08:27:25.24+00:00

At first I made a new group where I have added the device:

And after that I added that group to the domain join config:

Unfortunately it is still not applicable and it throws the errorcode 80004005.

Crystal-MSFT 49,271 Reputation points Microsoft Vendor

2024-07-03T02:43:15.7533333+00:00

@Stefan D, Thanks for the reply. From the screen shot you provided; I find the device icon is not Autopilot registered. Before we do Autopilot enrollment, we need to do Autopilot registration. You can manually collect the hardware hash on the device and upload it to Intune to do Autopilot register. After that, then we can add this device to the device group we created to do the following steps.

https://learn.microsoft.com/en-us/autopilot/add-devices#powershell

Stefan D 0 Reputation points

2024-07-03T07:15:15.7333333+00:00

I already added the decive to aupilot with powershell before the whole process, here you can see that the device is in autopilot:

Crystal-MSFT 49,271 Reputation points Microsoft Vendor

2024-07-04T02:03:01.61+00:00

@Stefan D, Thanks for the reply. Based on my testing in my lab, I find after I upload the hardware hash into Intune. the device icon changes to the one like below:

Here I suggest remove the previous one and go to device side to collect the hardware hash again to upload to Autopilot register again to see if it will change. You can check the audit log to confirm if the Autopilot device action is all successful.

Stefan D 0 Reputation points

2024-07-04T08:38:20.7533333+00:00

@Crystal-MSFT If I look up the device in microsoft entra then the icon is the same as yours:

But If I look inside the group where I assigned the device it shows the previous icon:

Crystal-MSFT 49,271 Reputation points Microsoft Vendor

2024-07-05T01:49:06.83+00:00

@Stefan D, From your description, I notice the device is already enrolled into Intune. It seems you want to change other enrollment to Autopilot enrollment. If so, then we need to configure Convert all targeted devices to Autopilot to Yes in Autopilot enrollment profile**.** And do reset on the device to start the Autopilot enrollment.

https://learn.microsoft.com/en-us/autopilot/profiles#create-an-autopilot-deployment-profile

Stefan D 0 Reputation points

2024-07-08T08:32:34.2866667+00:00

The problem is that the device is new so it should not be enrolled in intune. So I think it successfully enrolls in Azure AD but cant get pass the domain join. I tried your solution but it still says Errorcode 80004005.

Stefan D 0 Reputation points

2024-07-08T10:49:55.22+00:00

@Crystal-MSFT I tried your solution but it still says Errorcode 80004005

Crystal-MSFT 49,271 Reputation points Microsoft Vendor

2024-07-09T02:58:09.7533333+00:00

@Stefan D, Thanks for the reply. For the error code, is still show the same error, which means the device can't receive the domain join profile, I suggest open case to look into the background to check the issue.

https://learn.microsoft.com/en-us/mem/get-support
Sign in to comment

Use comments to ask for clarification, additional information, or improvements to the question.

Share via

Hybrid autopilot deployment: Errorcode 80070774

1 answer

Your answer