SCCM and Azure AD

Question

hello,

Can SCCM manage devices if the devices joined to the azure AD?

Answer 1

Hello Handian Sudianto

Yes, SCCM can manage devices that are joined to Azure AD. There are two ways to do this:

1. Co-management: This is a hybrid approach where SCCM and Microsoft Intune work together to manage the device. The device is enrolled in both SCCM and Intune, and both platforms can manage the device's policies and settings.
2. Cloud management gateway (CMG): This is a way to manage devices that are not connected to your on-premises network. The CMG is a cloud-based service that allows SCCM clients to communicate with SCCM servers. This means that you can manage devices that are Azure AD joined, even if they are not connected to your on-premises network.

To manage devices that are joined to Azure AD, you need to do the following:

1. Integrate your SCCM environment with Azure AD. This will allow SCCM to authenticate devices that are joined to Azure AD.
2. Install the SCCM client on the devices that you want to manage.
3. Configure SCCM to manage devices that are joined to Azure AD. This can be done using the SCCM console or the SCCM PowerShell cmdlets.

Once you have completed these steps, you will be able to manage devices that are joined to Azure AD using SCCM.

Here are some additional things to keep in mind when managing devices that are joined to Azure AD:

• You need to have a Microsoft 365 E3 or E5 subscription in order to use co-management.
• You need to have a SCCM 2012 R2 SP1 or later installation in order to use the CMG.
• You need to have a supported version of Windows 10 or Windows 11 installed on the devices that you want to manage.

I hope this helps! Let me know if you have any other questions.