Forum Discussion
Solved
Intune auto MDM enrollment for devices already Azure AD joined?
I have a client whose fleet of Windows 10 PC's are already joined to their organizational AAD (company-ownership), without any MDM, but now would like to start using Intune. They've upgraded their lic...
Hi Bob,
auto-enrollment is not supported when not used with OOBE and AADJ. But you could use an approach to guide users to MDM enrollment by sending out deep links via email for example. See here:
best,
Oliver
Hi, so we are in the same situation and use azure doman join machines but i managed to get the devices in Intune. We use a device managemen system Quest to run scripts on the machines.
1. give the user rights to enroll in intune
2. we are already using LGPO utility to push local policy's to everymachine (because they are not managed by intune yet). so we adjust the policy with the "Computer policy\administrative templates\windows components\MDM with the settings Enabled and User Credentials"
3. When applying the GPO it must be applied with admin rights under a Office365 user with admin rights in the O365 tenant. Because our Quest system can not run under a Office365 account we start a script with PSEXEC64 . example:
psexec64 -c lgporunner.cmd -u user@azuredomain.com -p password /accepteula
4. lgporunner.cmd consist of:
START /MIN LGPO.exe /g (directorywith LGPO settings)
START /MIN Gpupdate /force
call c:\windows\system32\deviceenroller.exe /c /AutoEnrollMDM
5. after this the device is enrolled in our Intune.
Update:
after that the solution from this site is working to add the devices to autopilot:
https://www.robinhobo.com/automatic-add-existing-windows-10-devices-to-windows-autopilot/
