Device enrollment failing

Question

I have configured Intune and testing Windows 10 device enrolment and the device is not enrolling to Intune, here is my setup:

• Devices are Hybrid Azure AD Joined (I can confirm this by running dsregcmd /status)
• Configured Automatic Enrolment MDM Scope to 'All' in Endpoint Manager
• created GPO and 'enabled automatic MDM enrollment' - 'User Credentials' setting selected
• Windows 10 version is 20H2

Domain:

• Local domain name domain.org - domain the devices are joined
• External domain abc.com (verified in Azure)
• User UPN is using abc.com (joe.bloggs@jaswant .com)

License:

• EMS+E3

The following errors appear in the Event log 'Microsoft-Windows-DeviceManagement-Enterprise-Diagnostics-Provider/Admin'

Event ID 201 - MDM Session: OMA-DM message failed to be sent. Result: (Unknown Win32 Error code: 0x80072f78).

Event ID 208 - MDM Session: OMA-DM session started for EnrollmentID (977F4BA8-B3BE-4EBF-9734-015B0FBFBD77) with server: (MS DM Server), Server version: (NULL), Client Version: (1.2), Origin: (0x26), Initiator: (0x0), Mode: (0x2), SessionID: (0x1D), Authentication Type: (0x3).

Event ID 209 - MDM Session: OMA-DM session ended with status: (Unknown Win32 Error code: 0x80072f78).

The device Sync status is: The sync could not be initiated ()x80072f78)

I have spent substial amount of time on this issue now and none of the devices are enrolling i would appreciate any help.

Answer 1

0x80072f78 is a general error that indicates the server response cannot be parsed. To find the root cause, we need more logs to analyze. It is highly suggested to create a free online support ticket to resolve this issue more effectively. Here is the link: https://learn.microsoft.com/en-us/mem/get-support

Also, you can refer the following link to check if all the prerequisites have met: troubleshoot-windows-enrollment-errors

By the way, I noticed that there is a email address uploaded, to protect you privacy, please make sure there is not the real address.