This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 48%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJW%3C/text%3E%3C/svg%3E)
Hi all,
I'm trying to get iOS User Enrollment to work with Intune. I have done the following:
I have tested the enrollment process with two users on two devices. Here are the results:
Device #1:
Device has been in use by user for over a year. Installed Company Portal app. Signed in to MS account via Company Portal app. Agreed to download configuration profile. Activated configuration profile in Settings app. Asked to sign in to Managed Apple ID. Email field is greyed out and can't be changed, user must sign in with the same email address as their MS account. User enters same password as MS account. User informed that their credentials are incorrect.
Device #2:
Device has been factory reset due to exited employee. Set up as new device. Created new Apple ID. Installed Company Portal app. Signed in to MS account via Company Portal app. Agreed to download configuration profile. Activated configuration profile in Settings app. Agreed that company will have control over device. Device enrolled successfully.
But it appears to be Device Enrollment, not User Enrollment. The user was not asked to sign in to a Managed Apple ID. Tested by using "Wipe" function in Intune. Device fully factory reset, including personal data.
Does anyone have any suggestions of what I could be doing wrong?
Thanks!
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 84%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
Have you seen the limitation of User Enrollment? That might affect the experience of User Enrollment. For example, User Enrollment only supports a unique enrollment ID for each device enrolled, but this ID doesn't persist after unenrollment.
https://learn.microsoft.com/en-us/mem/intune/enrollment/ios-user-enrollment-supported-actions
Thanks for the reply, I didn't get an email about it so I didn't see it until now.
I don't think any of those limitations are affecting me. The issue I have is that User Enrollment doesn't work at all, Device Enrollment is always used, despite my Enrollment Type Profile. Those limitations all apply once a device has been User Enrolled, but I can't even get to that point.