Hybrid Autopilot 80070002, Timed out waiting for ODJ blob or connectivity

Question

Hybrid Autopilot 80070002, Timed out waiting for ODJ blob or connectivity

Hong Ye 11

I am currently trying to setup up hybrid autopilot for Intune. I have done the configurations but it lead me to the error code 80070002. Then running the autopilot diagnostics it appears that it was unable to establish connectivity.
The error was "Could not establish connectivity" and "Timed out waiting for ODJ blob or connectivity.

Another question, does the ODJ connect need to be installed on the Domain Controller or it doesn't matter ?

*I am able to ping the domain controller

Can someone help please

2 answers

Your answer

Answer 1

Crystal-MSFT 53,806 Microsoft External Staff

@Hong Ye , Thanks for posting in Q&A. For the Intune Connector, it is not necessary to install on DC. But it needs to be installed on a computer that's running Windows Server 2016 or later with .NET Framework version 4.7.2 or later. And the computer must have access to the internet and your Active Directory. Here is a link with more details.
https://learn.microsoft.com/en-us/mem/autopilot/windows-autopilot-hybrid#install-the-intune-connector

For our issue, please firstly check in Intune portal to see if the Intune Connector is there and active.

Then check if the network requirements are all met.
https://learn.microsoft.com/en-us/mem/intune/fundamentals/intune-endpoints

In addition, here is a link with troubleshooting steps. You can read it as a reference:
https://oofhours.com/2020/07/19/troubleshooting-windows-autopilot-hybrid-azure-ad-join/
Note: Non-Microsoft link, just for the reference.

Please check the above information and if there's any update, feel free to let us know.

If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

Hong Ye 11 Reputation points

2022-11-14T00:20:35.533+00:00

Hi there, thanks for the response.
The Intune Connector has been installed and is currently active. However, the device that has the connector installed was unable to pick up any logs for ODJ connector service. The domain join profile also leads to an error with the error code of -1879048193
Crystal-MSFT 53,806 Reputation points Microsoft External Staff

2022-11-14T02:25:53.893+00:00
@Hong Ye ,, From your description, it seems the logs for ODJ connector service is unable to gotten and domain join profile is failed with error. Here, we suggest to check if the right on the on-premise organization unit is granted:
https://learn.microsoft.com/en-us/mem/autopilot/windows-autopilot-hybrid#increase-the-computer-account-limit-in-the-organizational-unit

If the connector service account has the following permissions on the device:

Log on as a service

Must be part of the Domain user group

Must be a member of the local Administrators group on the Windows server that hosts the connector

If there's any update, feel free to let us know.
Hong Ye 11 Reputation points

2022-11-14T07:06:24.763+00:00

@Crystal-MSFT , I have just doubled check the permissions with on the correct OU. Everything seems right. And the permissions for the connector service account are also correct. Still running into the sam error 80070002.
Crystal-MSFT 53,806 Reputation points Microsoft External Staff

2022-11-14T07:17:35.597+00:00

@Hong Ye , Thanks for the reply. If so, we suggest to open case to do the troubleshooting. Here is a link with the steps to open case:
https://learn.microsoft.com/en-us/mem/get-support

Answer 2

Nils Saligmann 6

Hi, your autopilot configuration policy needs the on-prem domain name (FQDN) not the AAD one.

.Giancarlo7 0 Reputation points

2023-08-11T09:57:44.7366667+00:00

what do you mean?
any screenshot of where someone can find this configuration policy?
Jon Drake 5 Reputation points

2024-08-08T18:11:16.42+00:00

What do you mean? I have the same issue in freaking 2024 and the Device Profile has no mention of the FQDN. The whole thing is to be handled by the intune connector, no? I see no other documentation anywhere about needing to add more.
Kylie Dennis 10 Reputation points

2024-09-16T04:23:24.8966667+00:00

You also need to create a Configuration policy.

Devices >> Windows >> Configuration >> Create >> Templates

For others having this problem

Share via

Hybrid Autopilot 80070002, Timed out waiting for ODJ blob or connectivity

2 answers

Your answer