question

JesusRuiz-4462 avatar image
0 Votes"
JesusRuiz-4462 asked JesusRuiz-4462 commented

Intune device enrollment error 80070002 using Company Portal app for some users (Something went wrong. The system cannot find the file specified.)

We have 3 users (out of 200+) having this error on their workstations when enrolling their Windows 10 workstations in Intune:


15961-image.png


This happens after they launch the Company Portal and login with our organization's Microsoft account and they click "Yes" on this screen:

15951-image.png


The device shows up for the briefest of moments in the Intune Admin portal, but goes away once they click "Done" on the error. Doesn't show up as an enrollment error in the portal.

Details on our environment and the workstations:

OS: Windows 10 1903 (latest updates installed as part of the troubleshooting direct from Microsoft, no WSUS server)
AD: All workstations are added to an on-prem domain that is not connected to Azure AD, no AD-Connect setup done or planned (I can elaborate on why if needed or relevant to the error).
No SCCM in our environment.
Enrollment method: Local install of the Company Portal app from the Microsoft Store
End users are local administrators on their workstations.

I apologize in advance if I left something out, first time posting on here. I will add it as a reply/edit, whatever this forum allows. Thanks!


mem-intune-generalmem-intune-enrollment
image.png (168.9 KiB)
image.png (100.6 KiB)
5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

3 Answers

Jason-MSFT avatar image
0 Votes"
Jason-MSFT answered Jason-MSFT commented

That error code means file not found. Not sure exactly what that means in this context though.

Have you reviewed User Device Registration event log or run dsregcmd /status as described at https://docs.microsoft.com/en-us/azure/active-directory/devices/troubleshoot-hybrid-join-windows-current?

· 2
5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

JesusRuiz-4462 avatar image JesusRuiz-4462 ·

I am not attempting a hybrid join, but this might uncover some additional info that might help. I will get a hold of a user and run dsregcmd /status and review the User Device Registration even logs. Thanks!

0 Votes 0 ·
Jason-MSFT avatar image Jason-MSFT JesusRuiz-4462 ·

Right, but the error shown above is specific to the Azure AD status of the system which is part of the process when enrolling into Intune.

0 Votes 0 ·
CiciWu-MSFT avatar image
0 Votes"
CiciWu-MSFT answered JesusRuiz-4462 commented

Please make sure the account is either an Intune service administrator, or a tenant administrator with the global administration permission, meanwhile, the account should have been assigned an Intune license.


Here are the links of Intune licensing and how to assign license:
https://docs.microsoft.com/en-us/mem/intune/fundamentals/licenses
https://docs.microsoft.com/en-us/mem/intune/fundamentals/licenses-assign


· 2
5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Jason-MSFT avatar image Jason-MSFT ·

Please make sure the account is either an Intune service administrator, or a tenant administrator with the global administration permission

Why? This is not required to enroll a device in Intune.

0 Votes 0 ·
JesusRuiz-4462 avatar image JesusRuiz-4462 ·

The users in question are licensed with either an M365 E3 or an EMS E3, both of which include Intune. I even tried swapping licenses to see if that changed anything. And I agree with Jason, the end users do not need to have any elevated Azure or Intune level permissions to enroll their devices. All other users have been able to enroll. I expect this to be a workstation or user specific issue

0 Votes 0 ·
paPushka-1225 avatar image
0 Votes"
paPushka-1225 answered JesusRuiz-4462 commented

I have the same exact error, did you manage to fix it ?

· 1
5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

JesusRuiz-4462 avatar image JesusRuiz-4462 ·

No, Microsoft support said a hybrid join via GPO might work (not an option in our environment, since not every workstation is on-prem domain joined), and that otherwise, the workstation would have to have a fresh install of Win 10, which is the route we went.

0 Votes 0 ·