Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
4,743 questions
One Microsoft Endpoint Manager (MEM) account and 2 Azure Accounts
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(163.2, 85%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
jreece22
0
Reputation points
Let me lay it out here:
We have two Azure Tenants. One of which is tied to an Office365 account and the other is just a standalone tenant. We'll call one AAD/O365 and the other just AAD. The two tenants have a trust between them.
We also have 1 Microsoft Endpoint Manager tied to the AAD/O365 account. This is where all of our MDM lives with Conditional Access policies as well.
We would like to be able to apply those Conditional Access that live in the AAD/O365 tenant to the AAD tenant. Is this possible?
The reason is because we do not want users to be able to login to their accounts on personal devices. We have this restricted in the AAD/O365 tenant, but the AAD because we have no MDM with that tenant.
I've tried to set exclusions for Device IDs from the devices enrolled in MEM, but it doesn't work and I believe it doesn't work because the DeviceID isn't associated with the AAD tenant.
Is there a way to import all the enrolled devices in our MEM into our AAD tenant so that those device ID then have something tied to it in that tenant?
Please advise.
Thanks,
Joe Reece
{count} votes
-
Lu Dai-MSFT 28,371 Reputation points2023-02-28T01:27:34.86+00:00 @jreece22 Thanks for posting in our Q&A.
Honestly, I have seen that one intune can connect to 2 Azure AD tenants. There is no helpful information I can share with you.
Thanks for your understanding.
Sign in to comment