Required URLs for Hybrid Azure AD joined and Intune Co-management Onboarding

Question

Required URLs for Hybrid Azure AD joined and Intune Co-management Onboarding

Hasan Bin Hasib 26

Hello there!

We're trying to onboard Windows 11 devices to Hybrid Azure AD joined and Intune, making them Co-managed...

We've already allowed several URLs but the endpoints are still not getting onboarded to the Intune portal. They get onboarded successfully once we disable the proxy on them. Once the device is shown as Co-Managed in the Intune portal, we enable again the proxy, and communication remains okay, like policy changes, applying new baseline policies, etc.

The problem seems to be at the end of Proxy and we believe there are some additional URLs required for the initial onboarding communication, which need to be whitelisted on the proxy.

Could anyone please share the list of all the required URLs and ports to make a device Hybrid Azure AD joined and to onboard it to the Intune portal to enable Co-management?

Thanks a lot in anticipation!

~ Hasan

Crystal-MSFT 53,991 Reputation points Microsoft External Staff

2023-02-15T02:14:02.9033333+00:00

@Hasan Bin Hasib, Hope things are going well. I am writing to see if we have tried to add the URls and ports in the links Marshaljs provided? Was the issue resolved? If there's any update, feel free to let us know.
Akshay-MSFT 17,956 Reputation points Microsoft Employee Moderator

2023-02-24T04:04:22.5466667+00:00

@Hasan Bin Hasib

Hope you got a chance to review the action plan suggested below. Please do let me know if you have any queries in the comments section. If you don't have any further queries and the suggestion works as per your business need. Please "Accept the answer" and "share you feedback (Yes/No)". This will help us and others in the community as well.

Thanks,

Akshay Kaushik

Accepted answer

0 additional answers

Your answer

Crystal-MSFT 53,991 Reputation points Microsoft External Staff

2023-02-15T02:14:02.9033333+00:00

@Hasan Bin Hasib, Hope things are going well. I am writing to see if we have tried to add the URls and ports in the links Marshaljs provided? Was the issue resolved? If there's any update, feel free to let us know.
Akshay-MSFT 17,956 Reputation points Microsoft Employee Moderator

2023-02-24T04:04:22.5466667+00:00

@Hasan Bin Hasib

Hope you got a chance to review the action plan suggested below. Please do let me know if you have any queries in the comments section. If you don't have any further queries and the suggestion works as per your business need. Please "Accept the answer" and "share you feedback (Yes/No)". This will help us and others in the community as well.

Thanks,

Akshay Kaushik

Answer 1

Hi Hasan,

There are multiple Urls in action in this process and I will ask you to investigate the proxy logs to see the blocks, however here are list of URLs that will assist you:

https://learn.microsoft.com/en-us/mem/autopilot/networking-requirements

For Intune - https://learn.microsoft.com/en-us/mem/intune/fundamentals/intune-endpoints

Also read through the Network requirements for Office365 - https://learn.microsoft.com/en-us/microsoft-365/enterprise/managing-office-365-endpoints?view=o365-worldwide

Also to note - If using Proxy, WPAD Proxy settings option must be enabled and configured. To deploy check this page with some steps - https://learn.microsoft.com/en-us/azure/active-directory/app-proxy/application-proxy-configure-connectors-with-proxy-servers

Hope this helps.

JS

==

Please accept as answer and do a Thumbs-up to upvote this response if you are satisfied with the community help. Your upvote will be beneficial for the community users facing similar issues.

Share via

Required URLs for Hybrid Azure AD joined and Intune Co-management Onboarding

0 additional answers

Your answer