My customer has a solution that makes domain controllers always available using a third party solution (but I also tried it in my lab with Always-on VPN), so client can authenticate from domain-joined (Hybrid AAD) machine from the logon screen while connecting from the open internet.
It breaks the ability for SCCM client to correctly detect the Internet mode and switch to CMG. Client still keeps trying to reach out to internal Management Points, and never considers the CMG.
We are investing in Azure consumption, and want to switch from IBCM to CMG. We don't want clients to come back on-prem using the always-on VPN solution mentioned above.
It there any chance that Microsoft would look into it and change the algorithm in Location Manager to failover to CMG when MPs are not available and switch to Internet mode?
Thank you.