Issue with Azure VM hybrid joined Intune registration

Question

I am experiencing an issue with a Windows 11 multisession VM that was created in Azure. The VM is hybrid joined, and MDM GPO is set to device credentials. I am seeing an error when using device credentials from the scheduled task stating “invalid message received from MDM Server.” Is this possibly due to device credentials not being supported yet for multisession VM, or should I continue to use user credentials? Any insights would be greatly appreciated. Let me know if you need more information. Thank you in advance.

Answer 1

@Yusuf Oezeren, Thanks for posting in Q&A. Device Credential is only supported for Microsoft Intune enrollment in scenarios with Co-management or Azure Virtual Desktop multi-session host pools because the Intune subscription is user centric. User credentials are supported for Azure Virtual Desktop personal host pools.

https://learn.microsoft.com/en-us/windows/client-management/enroll-a-windows-10-device-automatically-using-group-policy

Please confirm if the device is Azure Virtual Desktop multi-session host. If not, device credential is not supported. Hope the information can help.

---

If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.