Share via

GPO enrolled computes activities stays disabled

Pavel yannara Mirochnitchenko 12,411 Reputation points MVP
2023-03-06T07:15:16.4333333+00:00

Our customer's Intune have cloud-only computers and Hybrid AD Joined devices which are enrolled to MDM with GPO. Computers do appear to Intune, hardware data appears but any activites, including wipe is grayed out. Also applications is pending for status, so no activity there either. AD Connect is configured, MDM is enabled, MAM is disabled. Cloud-only computers and autopilot works ok.

I wonder, of you enroll computer from AD membership to Intune, should Intune still work the same way?

Microsoft Intune Enrollment
Microsoft Intune Enrollment
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Enrollment: The process of requesting, receiving, and installing a certificate.
1,320 questions
Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
4,743 questions
0 comments
Accepted answer
  1. Crystal-MSFT 46,271 Reputation points Microsoft Vendor
    2023-03-07T08:15:25.6933333+00:00

    @Pavel Yannara Mirochnitchenko, Thanks for the update. I am glad to hear that it works. Congratulations! To help others who have the same issue, here, please let me write a brief summary:

    Issue Description:

    Wipe and device actions are greyed out on GPO enrolled devices.

    Resolution:

    Find the devices are enrolled with Device credential. After changing the option from Device credential to user credential. It works!

    Again, thanks for your time and have a nice day!

    0 comments

2 additional answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Crystal-MSFT 46,271 Reputation points Microsoft Vendor
    2023-03-06T09:22:54.32+00:00

    @Pavel Yannara Mirochnitchenko, Thanks for posting in Q&A.

    In my environment, I find GPO enrolled device also has wiped option. My device is windows 10 22H2 enterprise.

    User's image

    From your description, I notice the wipe is greyed out on your GPO enrolled devices. Could you collect the following information to clarify:

    1. How many devices are affected? Did it affect all?
    2. What are the affected device OS version and edition?
    3. Could you get the device overview to see if there's anything abnormal?
  2. Pavel yannara Mirochnitchenko 12,411 Reputation points MVP
    2023-03-06T10:49:42.2666667+00:00

    I discovered that GPO for automatic mdm enrollment was done with Device option, not User option. Device option is supported only with Co-mgnt or AVD multi session. I changed it to User. Probably this would have major impact...?