Hello!
Our organization has enabled the MDM autoenrollment function when joining Azure AD (if a user in the group).
I connected the Windows mobile device to Azure AD, but the user was not in the group for auto enrollment and now he is joined to Azure AD, but the device is not added to the Intune.
Please tell me what are the ways to add this device to the Intune?
If its just one or a few devices, the simplest way is to manually turn on the local group policy referenced here :
If you have a lot of devices its a bit tricky but I wrote a blog post on how it can be done using a provisioning package:
Hope this helps,
@TimmyAndersson thanks for the answer.
in my case, there were few devices and it was easier to do it manually. screenshot in a separate comment
@KonstantinTerekhin-6040 From your description, my understanding is that this device has been added to Azure AD, but it hasn't enrolled in intune. If there is any problem with my understanding, please let me know.
To clarify our issue, could you check the following information:
Please check the windows mobile version to see if it is in the supported OS list in the following article:
https://docs.microsoft.com/en-us/mem/intune/fundamentals/supported-devices-browsers
Please check if the MAM user scope is set to "None" . If no, please let us know how is we set this. We can see more details about setting MDM and MAM scope in the following link:
https://docs.microsoft.com/en-us/mem/intune/enrollment/windows-enroll#enable-windows-10-automatic-enrollment
However, if the above requirement are all met, we can go to Microsoft Endpoint Manager admin center->Troubleshooting+support, select the user and check if there’s enrollment failures .
Please check the above information and if there’s anything unclear, feel free to let us know.
If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
@KonstantinTerekhin-6040 I am currently standing by for further update from you and would like to know how things are going. If you have any questions or concerns on the recent information I've provided you, please don't hesitate to let me know.
@LuDaiMSFT-0289 thanks for the answer.
The root cause is that we use autoenrollment for a specific parameter (the presence of a user in a specific group), but some users were not in this group and were not enrolled.
added in settings (screenshot in comments)
@KonstantinTerekhin-6040 I am glad to hear that you have found the root cause. If you have any problem in the future, you can post in our Q&A.
Thanks for your posting and have a nice day.
Just made in manually in Settings
5 people are following this question.
