Can I add my intune enrolled device into my work domain?

Question

I am currently trying to implement Windows Intune for my company. My question is, the devices that I have enrolled into Intune, can I add them into my work domain through intune without me having to going into the client machine's settings and manually having to add the domain, and if so how would I do it?

Thanks

Answer 1

First, you cannot force someone into your domain unless you have enrolled the device or they choose to add their work account to their device.

You have a couple of options:

#1 Get into Windows Autopilot, which gives you full control over your devices within your environment:

https://learn.microsoft.com/en-us/autopilot/windows-autopilot

#2 Educate your users to Add work or school account to their device:

https://support.microsoft.com/en-us/account-billing/join-your-work-device-to-your-work-or-school-network-ef4d6adb-5095-4e51-829e-5457430f3973

---

If this is helpful please accept answer.

Answer 2

@Sabur Mirza Thanks for posting in our Q&A.

A device joined to on-prem domain, and both joined to AAD means that it is a hybrid azure AD joined device. Currently, your devices are purely AAD joined. AAD joined cannot be changed to hybrid-AAD unless you use autopilot with hybrid AAD join profile or manually join the devices to on-prem domain.

To summarize: we can't directly convert.

Based on my understanding, it is suggested to remove the device from the existing Azure AD and then domain join them and let hybrid take over, or I would just recommend wiping them and do the hybrid join through autopilot.

https://learn.microsoft.com/en-us/autopilot/windows-autopilot-hybrid

---

If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.