Hello there !
I'm new to Azure AD and we are actually switch in from an old AD.
I'm an IT admin of a school and i actually have been manage hundred devices, it can be for students or administrative persons.
We have :
- Administrative PC (PC owned by the personnal)
- Student Laptop (School lend laptop to student for the year)
- Desktop PC (PC at school for self service, or used as lab when we have physical classes)
My question is :
How to registered and to make every of these PC conform to the AD ?
I tried with the powershell script to then inject in InTunes and to make the PC conforms ==> It's very long mainly when you have a lot of PC, plus we have distributed most of our laptop to student so we don't have the control anymore and they aren't signed up on Azure AD
I tried with joigning an Azure AD directly in the Windows parameters, it works, it's fast and the PC is displayed as "conform" in Intune.
I just have to send the bitlocker key through the network manually but not a problem.
But if you have a faster and better automation of it, i'd take it.
i tried BOOD way but it isn't detected so i didn't get how it work and i'm discovering right now the Windows Configuration Designer from WADK
The problem :
How to register the laptop that we already lend to student in our Azure AD ?
The laptop has an Admin + User Account, we have Office 365 Licence Academy account linked to Azure AD to each PC (the domain name @ is linked).
Microsoft doc are richs in informations, but as a Junior Admin I'm kinda drowning in these informations and i'll thank you for any informations that you'll bring to me.