Thank you for posting this in Microsoft Q&A.
I understand you are facing issue with joining an organization when a new user logs on to a laptop for the first time in Azure AD. After restarted computer, it starts without any problem, after entering the login data, the desktop appears without any additional configuration.
Can you confirm whether your organization enabled MFA?
If your organization enabled multifactor authentication (MFA) on AAD, users would need to complete additional configuration before joining device. If MFA not enabled, it won't ask any additional configuration.
To check MFA enabled or not follow below steps:
- Sign into the Microsoft Entra admin center as at least a Global Reader.
- Go to Identity > Devices > Overview > Device settings.
To verify if the machine is joined to Azure active directory, open Settings, and then select Accounts. Select Access work or school, and make sure you see text that says something like, Connected to organization Azure AD.
Hope this helps. Do let us know if you any further queries.
Thanks,
Navya.
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.