Hello everyone, I have a slight problem understanding whether I need a separate Intune license or not for my scenario: Company of 10 users- Licenses: Microsoft 365 Standard for most users, E3 for one user I am the only Global Admin I am the only person managing / installing / maintaining user computers, users are standard non-admin users Devices (Windows 10 laptops) are enrolled as Azure AD joined machines I do not need standard users to enroll their devices on their own as I do it for them I am not using Autopilot, or Conditional Access policies, the only policies I need to use are Configuration policies (i.e. to configure some Windows "GPO" settings, Onedrive, etc.) I am able to use Endpoint Manager, set policies, and propagate them, etc. My question: Do I still need to buy a separate Intune license for this scenario and assign it to the user? Thanks Michael

@Michael Novak Thanks for your update. For MDM is "Office 365 Mobile", it means the device is managed by office 365. It is needed to switch to intune. We can refer to the following article to switch. On the next MDM check-in, MDM will switch to intune. https://learn.microsoft.com/en-us/mem/intune/fundamentals/mdm-authority-set#set-mdm-authority-to-intune For MDM is "None", it means the devices just join in Azure AD. It is needed to get intune license and delete the device in Azure AD poral. Then re-enroll the device. If the response is helpful, please click "Accept Answer" and upvote it.

Hello, Thanks for getting back to me. This was a new device with Windows 10 preinstalled. Standard user's account was used during initial setup to join the machine to Azure AD.

Requested screenshots attached.

@Michael Novak Could you please check if the device's MDM shows "intune" in Azure AD portal? If MDM is not intune, it means the device is not managed by intune.

MDM value on devices with users having Business Standard license says "None", interestingly enough, MDM value on device of the user with Intune license (other user) has value of "Office 365 Mobile". Is this Basic Mobility and Security? There is an option to switch to Intune, but I would like to keep testing this on one device only for now, and keep using Basic MDM for other users. Is it OK to switch this? Thanks

intune liense requirement / MS365

Michael Novak 81

Hello everyone,
I have a slight problem understanding whether I need a separate Intune license or not for my scenario:

Company of 10 users-
Licenses: Microsoft 365 Standard for most users, E3 for one user
I am the only Global Admin
I am the only person managing / installing / maintaining user computers, users are standard non-admin users
Devices (Windows 10 laptops) are enrolled as Azure AD joined machines
I do not need standard users to enroll their devices on their own as I do it for them
I am not using Autopilot, or Conditional Access policies, the only policies I need to use are Configuration policies (i.e. to configure some Windows "GPO" settings, Onedrive, etc.)
I am able to use Endpoint Manager, set policies, and propagate them, etc.

My question:
Do I still need to buy a separate Intune license for this scenario and assign it to the user?

Thanks
Michael

Accepted answer

Lu Dai-MSFT 28,341 Reputation points

2021-03-29T08:27:31.79+00:00

@Michael Novak Thanks for your update.

For MDM is "Office 365 Mobile", it means the device is managed by office 365. It is needed to switch to intune. We can refer to the following article to switch. On the next MDM check-in, MDM will switch to intune.
https://learn.microsoft.com/en-us/mem/intune/fundamentals/mdm-authority-set#set-mdm-authority-to-intune

For MDM is "None", it means the devices just join in Azure AD. It is needed to get intune license and delete the device in Azure AD poral. Then re-enroll the device.

If the response is helpful, please click "Accept Answer" and upvote it.
Please sign in to rate this answer.

0 comments No comments
Sign in to comment

10 additional answers

Michael Novak 81 Reputation points

2021-03-26T10:26:28.797+00:00

Hello,
Thanks for getting back to me.
This was a new device with Windows 10 preinstalled. Standard user's account was used during initial setup to join the machine to Azure AD.
Please sign in to rate this answer.
Lu Dai-MSFT 28,341 Reputation points

2021-03-29T05:24:08.957+00:00

@Michael Novak Thanks for your update.

Could you please click on the license "Microsoft 365 Business Standard" and show me specific licenses included?
Sign in to comment
Michael Novak 81 Reputation points

2021-03-29T07:41:57.96+00:00

Requested screenshots attached.
Please sign in to rate this answer.

0 comments No comments
Sign in to comment
Lu Dai-MSFT 28,341 Reputation points

2021-03-29T07:59:03.227+00:00

@Michael Novak Could you please check if the device's MDM shows "intune" in Azure AD portal? If MDM is not intune, it means the device is not managed by intune.
Please sign in to rate this answer.

0 comments No comments
Sign in to comment
Michael Novak 81 Reputation points

2021-03-29T08:06:47.533+00:00

MDM value on devices with users having Business Standard license says "None", interestingly enough, MDM value on device of the user with Intune license (other user) has value of "Office 365 Mobile". Is this Basic Mobility and Security?

There is an option to switch to Intune, but I would like to keep testing this on one device only for now, and keep using Basic MDM for other users.

Is it OK to switch this?

Thanks
Please sign in to rate this answer.

0 comments No comments
Sign in to comment