Not able to join a Windows 10 PC to Azure AD

Sabarigirisan Shankar 16 Reputation points
2020-08-18T01:24:44.063+00:00

I have Office 365 business standard license and am the global administrator. Trying to join the AAD domain by going to settings - accounts - Access work or school - connect - clicked on Join this device to Azure Active Directory. Getting the below error saying that invalid_client with description failed to authenticate user. I do not have any subscription to Intune so MDM and MAM options are ruled out. Can anyone help

18050-image.png

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,559 questions
0 comments

6 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. VipulSparsh-MSFT 16,231 Reputation points Microsoft Employee
    2020-08-18T06:41:16.487+00:00

    @Sabarigirisan Shankar Thanks for reaching out. Even if you do not have the Intune license assigned to the user, the Intune MDM is enabled by default for whole tenant.

    In order to be able to just do a Azure AD Joined, please follow the steps below (I just tested by creating a new tenant and it works) :

    1) Login to your Azure portal
    2) Go to Azure Active Directory
    3) Select Mobility
    18158-1.jpg
    4) Select Microsoft Intune
    18207-2.jpg

    5) Change the Scope to None for both MDM and MAM
    18130-3.jpg

    Once done, Save it and try again on the machine, this should get joined in AAD now.

    If the suggested response helped you resolve your issue, do click on "Mark as Answer" and "Up-Vote" for the answer that helped you for benefit of the community.

    6 people found this answer helpful.
  2. Sabarigirisan Shankar 16 Reputation points
    2020-08-18T16:30:51.557+00:00

    @VipulSparsh-MSFT Thanks for your response. I went to the place as suggested by you and all I see is only a message Äutomatic MDM enrollment is available only for Azure AD Premium Subscribers

    18397-image.png

  3. Sabarigirisan Shankar 16 Reputation points
    2020-08-19T12:37:42.15+00:00

    @VipulSparsh-MSFT Managed to get a trial of the security bundle and am able to get it joined to the domain. I had Office 365 Business Standard license and was not able to join till I added the trial license of Security suite. Hope would be able to identify the issue before the trial ends

  4. Bartosz Jabłoński 1 Reputation point
    2021-03-10T22:06:33.667+00:00

    @VipulSparsh-MSFT

    Hey, I just had the same issue (and had Intune turned on by default). I have used your great instruction, switched to None in AAD / Mobility and then was able successfully Join the device (desktop with Win10).

    Thanks!

    0 comments
  5. ANJO - Renato Pereira 1 Reputation point
    2022-08-08T18:12:46.08+00:00

    Hi vipulsparsh-MSFT,

    how much time we need wait after set to NONE and SAVE??

    0 comments