question

CCNewell-1796 avatar image
0 Votes"
CCNewell-1796 asked saldana-msft edited

Intune Co-Management Hybrid Join Failures

Ok everyone I am at a loss with this....

I have:
1. Co-management configured between SCCM and Intune
2. AAD Connect configured for Hybrid join
3. No GPOs in place using SCCM client settings
4. Azure AD P1 licenses and Intune licenses assigned

I am testing on 5 pilot devices. 1 device is completing the ADD Hybrid join process and is auto enrolling into Intune as expected which leads to believe all Co-management settings are correct.

The other 4 devices (all Win10 20h2) are showing in AAD as Hybrid but after about 8 hours their names change to a Device ID GUID (not their actual device names, see image) they also will not auto enroll into Intune as expected.

I have run the connectivity testing tool and the dsregtest as well as done whole daregcmd /leave and /join. This will fix the device names in AAD but after a time they revert back to the GUID and still no Intune enrollment.
162929-capture.png

Help!!!!!!


mem-intune-enrollmentmem-cm-co-management
capture.png (1.3 MiB)
5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

LuDaiMSFT-0289 avatar image
0 Votes"
LuDaiMSFT-0289 answered LuDaiMSFT-0289 commented

@CCNewell-1796 Thanks for posting in our Q&A.

For the issue that not enroll to intune, we appreciate your help to do some check:
1.Are these 4 devices in the same pilot with the successful device?
2.What is the version of SCCM?
3.Please check if there is any error message about enrollment under Applications and Services Logs/Microsoft/Windows/DeviceManagement-Enterprise-Diagnostics-Provider/Admin in Event Viewer.

For the issue that shows GUID not device name, to get accurate help, it is suggested to create an online support ticket for Azure AD. Here is the support link:
https://docs.microsoft.com/en-us/azure/active-directory/fundamentals/active-directory-troubleshooting-support-howto

If there is any update, feel free to let us know.

If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.


· 2
5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

CCNewell-1796 avatar image CCNewell-1796 ·

Thanks LUDia
1. yes all 5 devices are in the same collection
2. SCCM 2010 latest Hotfix installed
3. Error: MDM Session: OMA-DM message failed to be sent. Result: (Unknown Win32 Error code: 0x80072f8f)


I have tried researching the above error with not much results.

Similar issue found here: https://social.technet.microsoft.com/Forums/en-US/19804c81-8205-4ceb-ad66-053460da55d5/cant-join-to-intune



0 Votes 0 ·
LuDaiMSFT-0289 avatar image LuDaiMSFT-0289 CCNewell-1796 ·

@CCNewell-1796 Thanks for your update.

From the error code "0x80072f8f", it usually occurs when something wrong about network.
https://docs.microsoft.com/en-us/azure/active-directory/devices/troubleshoot-hybrid-join-windows-current#earlier-windows-10-versions

Please contact your IT team to check the network. For such issue, it seems needed to compare logs between these devices to find the root cause. With Q&A limitation, it is suggested to create an online support ticket to handle this issue more effectively. It is free. Here is intune support link and hope it helpful.
https://docs.microsoft.com/en-us/mem/get-support

0 Votes 0 ·