Hi.
When i enroll device to intune azure AD creates 2 records - one without owner but registered in MDM and second has owner but don't registered in MDM
It's a big trouble - because i has policy "Conditional Access" to access to corporate documents and it doesn't understand that PC is in MDM.
This is expected if you do not have auto-enrollment enabled. The documentation covers this issue and the resolution:
"If you do not have Auto-MDM enrollment enabled, but you have Windows 10/11 devices that have been joined to Azure AD, two records will be visible in the Intune console after enrollment. You can stop this by making sure that users with Azure AD joined devices go to Accounts > Access work or school and Connect using the same account."
It should show up with no owner but say "Intune" in the MDM column, like the first entry in your screenshot, and it should have the same Device ID as what appears in the Intune portal.
See also, Two records under AAD Device
Please let me know if this helps.
We have a similar issue, except that we definitely have auto-enrollment enabled both items have different IDs but the same name
Thanks.
I has disable Auto enrollment.
At now I set "MDM user scope" to "All". I thinks its help me.
7 people are following this question.
