question

11490727 avatar image
0 Votes"
11490727 asked LuDaiMSFT-0289 commented

Cloud user can login to device enroll intune

i create user in azure active directory , i enroll all the device Intune

the problem is the user which i create on azure active directory cannot login to pc which already join to azure

mem-intune-device-configurations
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

LuDaiMSFT-0289 avatar image
0 Votes"
LuDaiMSFT-0289 answered

@11490727 Thanks for posting in our Q&A. Did you mean that the Azure AD account couldn't login to the enrolled windows devices? If there is anything misunderstanding, feel free to let us know.

For Azure AD user login issues, it is more related to Azure AD. I just give you some information that I know. If the enrolled device's join type is "Azure AD registered", we couldn't use Azure AD account to login and we could use local user to login.

If we need more information about Azure AD login issue, it is suggested to contact Azure AD to get more accurate help. The following link describes how to open a case, we can refer to it:
https://docs.microsoft.com/en-us/azure/active-directory/fundamentals/active-directory-troubleshooting-support-howto

Hope it will help.


If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.


5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

11490727 avatar image
0 Votes"
11490727 answered LuDaiMSFT-0289 commented

MY PC ITS HYBRID AZURE JOIN

ONLY I CREATE USER IN AZURE ACTIVE DIRECTORY

BUT I CANNOT LOGIN TO THE PC
what to do in this case

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@11490727 Thanks for your quick update.

As is known to all, hybrid Azure AD joined devices join to on-premises AD and Azure AD. Based on my understanding, this user also needs to exist in the on-premises AD.

I have done a lot of research about this. I find that when a new user is created in Azure AD, it won't be synchronized to Azure AD DS until change its password in Azure AD. We can read the following article to get more details:
https://docs.microsoft.com/en-us/azure/active-directory-domain-services/synchronization#synchronization-from-azure-ad-to-azure-ad-ds

If this issue still exists, please contact Azure AD to get more accurate help.

Thanks for understanding.

0 Votes 0 ·