Intune enrollment issue

srinivas Pasupuleti100 60 Reputation points
2024-07-18T16:10:25.28+00:00

We joined the devices to entra hybrid join.when we try to enroll these devices to intune via GPO AD intune policy for auto enrollment.Devices are not joined to intune.

when i run dsregcmd/status in cmd it shows device joined to azure ad joined,domain joined showing.

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
13,213 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,632 questions
Microsoft Intune Configuration
Microsoft Intune Configuration
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Configuration: The process of arranging or setting up computer systems, hardware, or software.
1,920 questions
Microsoft Intune Enrollment
Microsoft Intune Enrollment
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Enrollment: The process of requesting, receiving, and installing a certificate.
1,373 questions
Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
5,191 questions
0 comments No comments
{count} votes

Accepted answer
  1. ZhoumingDuan-MSFT 13,710 Reputation points Microsoft Vendor
    2024-07-19T01:43:19.2633333+00:00

    @srinivas Pasupuleti100,Thanks for posting in Q&A.

    From your description, I know you want to do hybrid azure ad join but device did not show in Intune.

    To clarify this issue, please check the following.

    1.Check whether the enrolled users own Microsoft Intune and Azure AD premium license.2

    2.MDM user scope under Automatic enrollment must set to All.

    3.Check the task under Task schedule.

    4.Check if there exist some error message in Event Viewer.

    5.MFA could be blocking the enrollment. Entra sign-in should confirm that. Try excluding a user and if the works then you can exclude the Intune enrollment app in the CA policy in question.

    6.Some of the PCs missing from Intune were currently unused and had never been logged into by an active user-- just a local admin account. Since Intune is licensed by the user, ergo those PCs were not appearing in Intune even though they were successfully Hybrid AD Joined.

    Here is a link about troubleshooting Windows 10 Group Policy-based auto-enrollment in Intune

    https://learn.microsoft.com/en-us/troubleshoot/mem/intune/device-enrollment/troubleshoot-windows-auto-enrollment

    Please check above information, if there is any update, feel free to let me know.

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.


1 additional answer

Sort by: Most helpful
  1. Rahul Jindal [MVP] 10,196 Reputation points MVP
    2024-07-18T19:36:20.69+00:00

    Have you checked the user registration event logs? Is the enrollment schedule task created and running? Is auto mdm enrollment configured? There can be a number of reasons. Check the pre-reqs.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.