Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,631 questions
Hybrid Azure AD Joined (connection loss)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(243.2, 92%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EB%3C/text%3E%3C/svg%3E)
Blindf8th
61
Reputation points
Good afternoon,
Recently we have seen several devices out of no where lose the connection to our Azure tenant (Windows > Settings> Accounts > Access work or school. The only thing we do see is the Connected to AD Domain.
Nothing has changed with these devices that we are aware of. When we check dsregcmd /status we see that all these devices have AzureAdPrt : YES with a couple that show AzureAdPrt : NO.
These devices are also all registered with AutoPilot which means leveraging the dsregcmd tool to leave/join the organizational tenant is not possible because Azure prevents the deletion of these devices. If click the + to add it we receive an error that states "Your device is already connected to your organization" & "Your device is already being managed by an organization". The main thing impacted at this time is the access to the Company Portal (it errors out).
Azure Device Check:
Join Type: Hybrid Azure AD joined
Enabled: Yes
MDM: Microsoft Intune
Compliant: Yes
Endpoint Check:
Managed by: Intune
Ownership: Corporate
Compliance: Compliant
Last check-in: Updates daily
Two questions:
- Any idea what can cause this behavior?
- How can we re-add the Connected to company Azure AD?
Any information or thoughts would be greatly appreciated.
Thanks,
Blind
{count} votes
-
JimmySalian-2011 42,071 Reputation points2022-08-27T19:40:11.897+00:00 Hi,
Can you provide additional details and logs from the below section:
From the Azure AD analytics and operational logsUse Event Viewer to look for the log entries that are logged by the Azure AD CloudAP plug-in during PRT acquisition.
In Event Viewer, open the Azure AD Operational event logs. They're stored under Applications and Services Log > Microsoft > Windows > AAD.
-
JamesTran-MSFT 36,541 Reputation points Microsoft Employee2022-09-09T17:25:53.883+00:00 @Blindf8th
Because it's been a while since your initial post, I just wanted to check in and see if you had any other questions or if you were able to resolve this issue?
Sign in to comment