Share via

MECM or Co-management with AzureAD joined Devices

shockoMS 281 Reputation points
2023-05-19T15:17:06.4466667+00:00

We are currently running MECM Current Branch. I have several AzureAD joined machines and looking to manage them with MECM or co-management (Intune and MECM). Is this possible? I have started reading some of the literature but it seems that MECM requires the device to either by ADDS joined or hybrid joined (i.e. have a computer object in ADDS). 

Microsoft Security | Microsoft Entra | Microsoft Entra ID
Microsoft Security | Intune | Other
Microsoft System Center | Other
0 comments
Accepted answer
  1. Simon Ren-MSFT 40,346 Reputation points Microsoft External Staff
    2023-05-22T06:07:59.4933333+00:00

    Hi,

    Thank you for posting in Microsoft Q&A forum.

    Yes, agree with @Alfredo Revilla - Upwork Top Talent | IAM SWE SWA , it is possible. Based on my knowledge, most MECM clients are on-promise domain joined, and you say the several machines are also AzureAD joined, so you can enable co-management for these machines.

    For more detailed steps and information, please refer to the official articles:

    Tutorial: Enable co-management for existing Configuration Manager clients

    Tutorial: Enable co-management for new internet-based devices

    Thanks for your time. Have a nice day!

    Best regards,

    Simon

    If the response is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    1 person found this answer helpful.

2 additional answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Alfredo Revilla - Upwork Top Talent | IAM SWE SWA 27,526 Reputation points Moderator
    2023-05-20T16:06:06.1366667+00:00

    Hello @shockoMS , it is possible to co-manage devices with MECM and Intune. Basically you will install the MECM agent in Intune managed devices. The latter requires the devices to be Azure AD joined (cloud only join) or Azure AD hybrid joined (on-premise+cloud join). For more information take a look to Prerequisites.

    Let us know if you need additional assistance. If the answer was helpful, please accept it and rate it so that others facing a similar issue can easily find a solution.

    1 person found this answer helpful.
  2. Simon Ren-MSFT 40,346 Reputation points Microsoft External Staff
    2023-05-23T07:44:19.1333333+00:00

    Hi @shockoMS ,

    Thank you for your reply.

    Per my experience, yes. If you can't deploy your on-premises AD with Azure AD as hybrid Azure AD, the Azure AD joined devices MUST communicate with a CMG and cannot communicate with MECM directly.

    Thanks for your time. Have a nice day!

    Best regards,

    Simon

    If the response is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    1 person found this answer helpful.
    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.