What do I have to do so I don't need to add my Azure AD domain or intune device management to my laptop like the on- Premises?

Question

I have window server 2022, Azure AD and Intune synced. Since I am deploying software from intune, I dont want to add intune device management in computer or the Azure joined becuase I already have the on-premises domain added, and I want to get the software that I deployed from intune to be in computers for users in the on-premises domain. Please give me a suggestion that work out well under one domain joined computer, since everything is synced to each other, they should work out but I am not sure how.

Answer 1

Hi,

Thank you for posting in Microsoft Q&A forum.

As @Rahul Jindal mentioned, it's recommended to use hybrid Azure AD joined for your scenario. Devices that are enrolled in in Intune, may be joined directly to Azure AD, or they may be hybrid Azure AD joined, but they must have a cloud identity.

Hybrid Azure AD joining a device is a device identity scenario, which has your device joined to the on-premises AD DS domain, and registered in Azure AD. This is a good scenario when starting your identity and security migration from on-premises to the cloud.

We can use GPO/Autopilot/MDM automatic enrollment for Windows devices. Here are some articles for your reference:
Enroll a Windows 10 device automatically using Group Policy Set up automatic enrollment for Windows devices Use Windows Autopilot to enroll devices in Intune

Thanks for your time. Have a nice day!

Best regards,
Simon

---

If the response is helpful, please click "Accept Answer" and upvote it. Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.