Share via

Intune Autopilot, Computer joins in Azure AD but not i local AD

Martin Schwabe 101 Reputation points
2022-07-31T09:43:19.597+00:00

226485-image.png

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,990 questions
Windows Autopilot
Windows Autopilot
A collection of Microsoft technologies used to set up and pre-configure new devices and to reset, repurpose, and recover devices.
416 questions
Microsoft Intune Enrollment
Microsoft Intune Enrollment
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Enrollment: The process of requesting, receiving, and installing a certificate.
1,269 questions

6 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Crystal-MSFT 44,406 Reputation points Microsoft Vendor
    2022-08-01T01:46:23.807+00:00

    @Martin Schwabe , From your description, it seems our device is Azure AD joined instead of Hybrid Azure AD joined when doing Autopilot. If there's any misunderstanding, feel free to let us know.

    For our issue, firstly, please confirm if the Autopilot profile is set as Hybrid Azure AD joined.
    226510-image.png
    Then confirm if the profile is already assigned to the device.
    226542-image.png
    Meanwhile, if we have multiple Autopilot profile assigned, please exclude the affected device from other profiles to see if it works.

    Please try the above suggestion and if there's any update, feel free to let us know.

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments
  2. Martin Schwabe 101 Reputation points
    2022-08-01T06:17:39.007+00:00

    Thanks for the quick reply!

    Yes I have set the autopilot profile to Azure AD hybrid joined and it is assigned to the correct device.

    I went through the Microsoft instructions (https://learn.microsoft.com/en-us/mem/autopilot/windows-autopilot-hybrid) again and saw that I was missing some shares in the firewall. After I set them, the installation runs much faster (about 10min) and I get the following error in the event log of the DC:

    226654-netlogon1.jpg226597-netlogon2.jpg

    It is in german and says:
    The session could not be set up from computer "W10-KCNVAJZKNDR" because the security database does not contain a trust account "W10-KCNVAJZKNDR$" corresponding to the specified computer.

    And:
    Failed to authenticate the session setup of computer W10-KCNVAJZKNDR. The following error occurred:
    Access denied

    Maybe important: The Intune Connector is on a Member Server and i did the step from the guide: Increase the computer account limit in the Organizational Unit

    Regards Martin

  3. Martin Schwabe 101 Reputation points
    2022-08-01T13:17:10.393+00:00

    I have read through the troubleshooting and what I have noticed is that i am stuck at the point:

    Did the ODJ connector process a request and upload a blob for the device?

    In my Eventlog for the ODJ there are no entries. But in Intune it says connection is active and sync time is up to date. ODJ Service is running.

    Any ideas?

    Regards Martin

  4. Martin Schwabe 101 Reputation points
    2022-08-02T06:51:32.87+00:00

    Yes i am runing AzureAd Connect without any issues. Here the screensshots.227064-azuread-info.jpg

    227102-intune-info.jpg

    227065-intune-info2.jpg

    Regards Martin

  5. Martin Schwabe 101 Reputation points
    2022-08-05T16:11:45.447+00:00

    Intune Connector is also working (only the lower one in the pic is connected). The device also seems to have received the profile correctly.

    228598-screenshot-2022-08-05-180339.jpg

    228644-screenshot-2022-08-05-180513.jpg

    Regards Martin