25,159 questions
Azure Active Directory Non Compliant Devices
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 60%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
jpcapone
1,776
Reputation points
When I go to Azure Active Directory > Devices I see information indicating that there are 37 noncompliant devices. I am unsure of how I should address these items. Any suggestions would be appreciated.
Microsoft Security | Microsoft Entra | Microsoft Entra ID
5 answers
Sort by: Most helpful
-
-
Dillon Silzer 57,831 Reputation points Volunteer Moderator2022-08-29T14:47:47.377+00:00 Hi @jpcapone
When you click on See all noncompliant devices you need to go to each device > Under Monitor > Device compliance
It will tell you which policy it is not compliant with:
Common error codes and descriptions in Microsoft Intune
Monitor results of your Intune Device compliance policies
https://learn.microsoft.com/en-us/mem/intune/protect/compliance-policy-monitor
---------------------------------------------
If this is helpful please accept answer.
-
jpcapone 1,776 Reputation points
2022-08-29T15:03:08.53+00:00 Thanks for your reply. When I click See all noncompliant devices and select a device, I don't see Monitor on the left hand side. Please advise:
-
JimmySalian-2011 42,511 Reputation points2022-08-29T17:56:51.837+00:00 Hi,
By looks of it the device has not connected since 2nd Feb 2022? Is the device active and communicating with the AAD? Check the device status via dsregcmd /status.
Sign in to comment -
-
David Broggy 6,371 Reputation points MVP Volunteer Moderator2022-08-29T18:39:30.01+00:00 I believe that my colleague is referring to the menu in Intone, not Azure AD.
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(198.4, 39%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELS%3C/text%3E%3C/svg%3E)
Linas Snarskis 10 Reputation points2023-06-19T15:04:07.87+00:00 I have 11 non Compliant devices not sure why?
I click the link https://endpoint.microsoft.com/#view/Microsoft_Intune_Enrollment/ReportingMenu/%7E/deviceCompliance
And it brings me to Microsoft Intune admin center
I follow the tree Reports Device compliance reports
But all reports show Compliant 0Not compliant 0In grace period 0Not evaluated 0Managed by ConfigMgr 0Total0
How to tell why a device is non compliant?
Sign in to comment -
-
Alfredo Revilla - Upwork Top Talent | IAM SWE SWA 27,526 Reputation points Moderator2022-09-01T02:23:48.717+00:00 Hello @jpcapone and thanks for reaching out. As a minimum, authentication done from non-compliant devices should require MFA or Intune registration trough Conditional Access. Also, Common Zero Trust identity and device access policies recommend devices to be marked as compliant for Enterprise grade protection.
To locate what policies and settings are causing a device to be marked as non-compliant go to Microsoft Endpoint Manager admin center > Reports > Device compliance > Reports.
Let us know if you need additional assistance. If the answer was helpful, please accept it and complete the quality survey so that others can find a solution.
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(169.60000000000002, 60%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
rebelemerald 15 Reputation points2023-01-24T16:37:38.0033333+00:00 I'm unsure if I should open a support ticket since I am seeing the same issue. Our subscription is Office 365 and we do not have an Azure P1/P2 or Intune. This means that the device compliance reports are not accessible.
Where are the policies for this device (or user perhaps?) that are flagging as non-compliant in AAD Devices?
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Anonymous2023-02-19T19:42:08.8866667+00:00 I agree. My clients tenant is through GoDaddy and it appears that I have no way of even signing up for Intune. This is a very frustrating issue for those of us supporting small businesses. I have no idea even how to sign up for this service!
-
laughey 51 Reputation points2023-06-02T19:42:19.6633333+00:00 Jumping on the bandwagon. My single non-compliant device (all others are listed as 'N/A') is idenified as Windows 10, even though it's Windows 11 (and always has been). Additionally, we don't have/use Intune, although I was able to locate the "reports" section as suggested. Try as I may, nothing comes as a result...no non-compliant devices. Another Microsoft mess -- non-compliant device in Azure AD even though/when compliance isn't warranted. :0/
-
Alfredo Revilla - Upwork Top Talent | IAM SWE SWA 27,526 Reputation points Moderator
2023-06-19T17:08:47.5933333+00:00 Hell everybody, since the original question is almost 1 year old, please create new questions for your current issues.
Sign in to comment -