Hello @Jordy Evaristo Escalona Bryan,
Thank you for posting your query on Microsoft Q&A.
I understand you are looking to register or join all your workstations to Entra ID and want to confirm if Authenticated scans can be run from a managed device.
According to Microsoft documentation, "Authenticated scan for Windows provides the ability to run scans on unmanaged Windows devices
. You can remotely target by IP ranges or hostnames and scan Windows services by providing Microsoft Defender Vulnerability Management with credentials to remotely access the devices. Once configured the targeted unmanaged devices will be scanned regularly for software vulnerabilities. This is applicable for devices that don't have the Defender Vulnerability Management or Defender for Endpoint agent deployed."
Regarding your second question, the Microsoft Authenticated Scanner uses pre-defined credentials to attempt to login to the assets being scanned. These credentials are specified in the scanner configuration and are used to authenticate to the assets and perform the scans.
For more detailed information, you can refer to the following document:
I hope this information is helpful. Please feel free to reach out if you have any further questions.
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.
Thanks,
Raja Pothuraju.