Share via

Question about SCCM and Intune Co-Management

Michael Reprogle 6 Reputation points
2022-07-26T16:29:17.717+00:00

So, I will preface by stating that my work in SCCM has been very minimal and just started a new position that uses both SCCM as well as Intune. When I go into Devices in Intune, things start to look strange, as if devices are not enrolling correctly. We want non-mobile devices to pop in Endpoint Manager and show as being co-managed, yet there are random devices that show as being managed by ConfigMgr and other show co-managed. What should I do to make sure that these are enrolled correctly and are being co-managed instead of just being stuck in 'ConfigMgr'?

Here is what I am seeing:

S15Jfo1.png

I asked this previously on r/Intune and didn't get a ton of responses to it. The site version I am running on says 5.0.9049.1000, and Configuration Manager shows that it is on 2103. Apparently, there used to be a bug that was fixed in an old version of SCCM that would cause this problem.

We have a handful of Intune only devices, which are mobile devices, but are hoping to have on-prem workstations be co-managed.

Microsoft Security | Intune | Enrollment
Microsoft Security | Intune | Configuration Manager | Other
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Crystal-MSFT 53,991 Reputation points Microsoft External Staff
    2022-07-27T01:28:21.453+00:00

    @Anonymous ,From your description, it seems some devices are not co-managed. If there's any misunderstanding, feel free to let us know.

    To troubleshoot this, firstly, we suggest to go to one affected device, Settings->Accounts->Access work or school, find the account there and see if there's info button under the account.

    Meanwhile, open command prompt with run as administrator and run dsregcmd /status to see if both AzureAdJoined and DomainJoined are set to YES. if the SSO State section displays AzureAdPrt as YES.

    In addition, please also collect the following information to clarify:

    1. How did we configure the Automatic enrollment in Intune in Configuration manager? Did we configure Pilot or All? If we configure pilot? was the affected device include in the pilot collection?
    2. Check the event log under Applications and Services Logs/Microsoft/Windows/DeviceManagement-Enterprise-Diagnostics-Provider/Admin: to see if there's any error related.
      https://learn.microsoft.com/en-us/troubleshoot/mem/intune/troubleshoot-windows-enrollment-errors
    3. Were any troubleshooting steps we tried before.

    If there's any update, feel free to let us know.

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.