This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(118.4, 32%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESP%3C/text%3E%3C/svg%3E)
Hello,I tried to enroll entra hybid joined devices to intune via GPO .user has intune license.Configured GPO correctly it was applied to the device.but enrollment not successfull.Please find the event viewer logs attached.any answer should be appreciated.
Could you give us an overview of what things you checked?
-License
-MDM scope
-Device Platform Restrictions
The same way how it is mentioned here
Conditional access blocking\interfering with device enrollment? Should be logged in Entra sign-in logs.
No Conditional access policy blocking.
User signed with entra hybrid join credentials
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 35%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EZM%3C/text%3E%3C/svg%3E)
@srinivas Pasupuleti100, Thanks for posting in Q&A.
From your description, I know you want to do hybrid AAD join but failed.
To clarify this issue, please check the following.
1.Could you share us what kind of credential have you configure? Device credential or User credential?
2.Check if there exist CA policies that may block enrollment.
3.Check the task under Task schedule.
4.Check on-premise UPN to whether match the Azure AD UPN so they can login with the correct credentials.
5.Run dsregcmd/status in cmd to check whether it shows device joined to azure ad joined,domain joined.
And here is a link with the similar issue you can refer.
https://www.reddit.com/r/Intune/comments/le1tqd/auto_mdm_enroll_device_credential_failed_error/
Please try above information, if there is any update, feel free to let me know.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.