![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 15%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKP%3C/text%3E%3C/svg%3E)
7,023 questions
@karthik palani Thanks for posting in our Q&A.
For Q1: Did you mean that you want the devices are in AD on prem and Azure AD? If yes, GPO enrollment is a good choice. Please refer to the following article to get more details.
https://learn.microsoft.com/en-us/windows/client-management/mdm/enroll-a-windows-10-device-automatically-using-group-policy
For Q2: It is more related to Azure AD and I know little about it. Let's wait for the Azure AD engineer involved in this issue.
For Q3: To avoid any misunderstanding, could you please describe more details? If possible, please tell us what you want to achieve.
If there is any update, feel free to let us know.
If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.