That's so strange. My boss came up to me this morning and told me to configure intune for a new client. None of us know how to use it. The very same morning you upload this. Haha. Amazing. Thank you! :)
Absolutely amazing, your videos are clear, complete, an infinitely resources for my Job, i don’t how i can tell you Thanks, thanks! I will vote for you of course. Patrizio from Rome!
Aw thank you so much I really appreciate that and just to hear you say that means a lot to me. Great to have you on board and I’m delighted that you find my content useful, all the best, Andy 😊
Hi Andy, just worth mentioning the majority of security options in endpoint manager / intune usually require defender for endpoint licenses also and integration between defender and intune. Also, I think you can only register with Windows home in a BYOD context, you need pro or enterprise to join. Cheers!
Andy, this is a big one in such a concise but clear manner. Definitely a proper Zero to Hero. I was able to use this lesson combined with my office's Intune deployment and learned a lot. Great stuff. Thank you!
Hi Andy, i have been following your videos. Just want to say thanks for your level of patience and for making things simple. With this video, i can bravely put my head up and work in intune. Thanks
Wow! I am into System administration now and I have no Idea what Intune is. After watching this video found everything absolutely same as what my Org is configured. Simply superb Andy. You are awesome!
This video helped me a ton with getting my Intune from zero to hero, just like you said! Thanks a lot for this valuable recourse. I'm now ready to roll my device out. Very solid, thorough video.
We are in this world always learning, in my case some things about Microsoft and English too, thank you for speaking clearer and calmer English, more wishes for this year.
Hi Andy, this is a great video, I work for an MSP and I have set this up on a few different 365 tenants now. I am just looking for confirmation that all i should need for policies to start working is: 1. The Relevant license 2. MDM set to ALL (or SOME and connected to an Entra Group) 3. Compliance and Config policies setup. I am just trying to set things up in a very basic way to get us going and Microsoft really arent much help when you log it.
Thank you so much for this general and thorough tour of this software. My client recently learned he had Microsoft Intune and wanted to learn how to use it and see what he could do with it. And it seems you can take advantage of it especially since they are 60+ users, including some remote ones.
Hey Andy, always great stuff, thanks! You've been the key teacher to get our agency iPhones and PCs managed on Intune. Big big thanks! It's saved us so many hours of work and made us so much more compliant and secure. I'll be adding my first macOS computer with Intune next week and I'd love to get your take on doing it right.
This is great i've inherited intune in new role - hasn't been fully implemented. I need to learn fast whats there and re-do - getting it working. I think i'll be watching the autopilot vid as well
Very Good Training Video, the only feedback I have is at 34:47 the blurred video becomes a lot clear which was hard for me to watch through the course from the start.
Thanks Andy. I was wondering if you could do a more in depth video on Intune licensing. I'm having a hard time figuring out the differences between "Intune Plan 1" and "Intune Plan 1 Device". Basically trying to answer the question can I buy the device licenses, which are cheaper, to control our PC's and/or tablets. Thanks again.
About the AD and AAD Join it’s not entirely true that you have to reset the device if choosing the wrong option. While it is true that you need to reset a HYBRID AADJ device you can migrate an ADJ device to AADJ without a complete reset using a local admin account and a profile migration tool. Also you can do the same going from AADJ to ADJ. remove from azureAD reboot and join AD. Migrate profile. You can also migrate a profile from a local account into your AAD account using a tool like ProfWiz from Forensit
This is great video Andy. million thank you. I watched the entire video and made some notes and screenshots. I dont work for a company that have intune so how do i go about practicing it. is there a demo site that i can touch on it. I've watched your other videos regarding the server and I learnt a lot from practicing on local vm server and I would like to do the same with intune. is there a way? thanks again
Hello Andy, I have learned a great deal from your channel and really appreciate how much time and effort you put into each video. When you first installed Windows 11 on this particular test machine, did you choose the "Domain join" option? Also, are you creating VMs in Azure for testing or using local resources? Thanks again!
Fantastic video. However, its my understanding that the hybrid devices are still able to be managed through Intune by configuring the settings for Intune to manage those devices... Are there no setting options at the time of this video?
You are partly correct, yes. If you are in hybrid, and are using system centre with active directory locally you can enable co-management which provides a single pane of glass to both devices on prem and in the cloud, but they are still authenticated either by active directory or by. Entra ID
Again, thank you for another excellent video. One question here - you demonstrate Azure vs Hybrid registered devices. But what if all we see under Join Type is "Microsoft Entra Registered" ? How does one go about getting all their devices to be an Azure AD type? We are hybrid.. we have on-site servers, a local DC, but just got our Biz Premium license to gain Intune and other features. I don't want to bugger this up.
@@AndyMaloneMVP Oh... uh oh? They are all corp-owned devices, previously joined to our local domain. So even if I deploy InTune, they won't be fully manageable like your video shows then ?
You need to have either an insurance license or have it included with an EM&5 and E5. It’s also included with business premium for smaller businesses 👍
Great video but I'm running into an issue ... when on the MDM screen (Entra > Settings > Mobile > InTune) everything is grayed out and it states that new WIP w/o enrollment policies are no longer supported. Not sure where to go from here and hitting dead end after dead end. Suggestions?
Hi, thank you for the video. I have a couple of questions. When you join a user to Azure AD, like in your example, does it show as a local administrator and not just as a user? My second question is, I have an on-premises Active Directory and most of the workstations are joined to the domain. How can I switch to Intune and manage them through the portal?
When you join a user to Entra ID they will come in as a user not an administrator. Also, if you have workstations that are currently in hybrid these will need to be reset before you can join them via Intune
Hi Andy, Love your channel, thank you! Quick question at 22:05 you talk about putting a link in the description to your Autopilot Deployment video. Could you please point me to the correct video.
Hi Andy, thank you so much for all of the first class help. I do need help though. ,thanks to you, I now run mdm for my company. I have devices across a number of platforms including Android. I use the corporate owned android setup but read that Google is stopping in 2024 some aspects of android . I can’t figure out whether I will be affected by this. Could you offer some advice. Although I manage this I’m not confident that I understand whether I need to act now or not. Thank you!
Hi Andy, I'm a little confused with a statement at 21:20 ish where you state about "enrolling into Intune, not MDM, but Intune"..... are you not enrolling into MDM when you enroll into Intune?
Yes, and no, you can enroll into MDM via Entra ID. But to get full management capabilities, you need to add on Intune license. I know it’s a little confusing. Microsoft 365 support’s free MDM for mobile devices, but if you want to manage them, you really do need Intune.
This method leaves the account as a local administrator, which is a big no-no for many people. My understanding is the best practice is to just go ahead and get the hardware Hash (To allow for Autopilot) using PowerShell, wipe the machine, and log the user in from OOBE. Or is it sufficient to just downgrade the user and get the hardware hash?
I haven't seen this method from being AzureAD joined used by organizations. We typically get the hardware hash using Powershell and reinstall the device. After reinstall Autopilot takes care of the rest.
@@patrick__007 where I work, we've been using LAPS. It's awesome & was a huge help giving it to contractors to remediate CrowdStrike BSOD devices, after which the LAPS pass is easily rotated :)
Depends on your business. There are some great compliance templates that walk you through steps along with features like compliance score help ensure that these are implemented correctly 👍😊
Hello Andy. Thank you for this video. Is there a way to do Azure AD Join (not hybrid, we dont have any local Domain Controller) with Windows Server 2019 Standard? We use this server for Remoted Desktops. Thank you
Iam creating a lab for a college project, its going to be hybrid onsite arch. At the 15 min mark you say you cant manage a hybrid AD joined machine on intune/ep manager. Does that mean if I want to manage the machine I need to join it to the domain through Azure rather than the non Azure classic way? If I understood correctly. My plan was to build the active directory then replicate it to Azure through AD connect or similar. But now wonder if I should just join the computers to Azure first? I hope that makes sense I'm new to Azure, any guidance appreciated 😅
@AndyMaloneMVP It's just a lab nothing that will be used in the real world, and nothing more than just showing we can set up ad/entra etc. My plan was to build two sites and then replicate them on Azure/Entra through connect and then the devices could be managed through Intune. But it seems I will have to join them to Entra while setting up the clients. Which is fine, just something to keep in mind. The domain doesn't even need to be configured fully anyway, just a few users and a computer or 2 its just for proof of concept and some screenshots.
@Andy Malone MVP great video, but if i login on the computer first time, the system wants to active helo or the app. How do you disable this? I have many company they don't want this.
@@AndyMaloneMVP can you make a short video how to disable them? Please! I am a little bit frustradet . I have joined like you the aad, but i can't see the machine in the intune portal. I also get online one option to disconnect, but not the option like you "manged by "
I thought by selecting "all users" in MDM settings it enrolls those devices to Intune. So with that being said, shouldn't the number of devices in Entra ID more closely resemble the amount of devices in Intune?
Hi Andy, To be able to add a device to Intune via the account setting in Windows 11 - should the user be administartor ? Also, the user can disconnect himself (his device) , is that normal ? Could we set it up to ask tobe admin of the device to have the right to disconect ? Thanks !
Yes, I believe that the settings are included in the windows 11 profile. However, if you’re asking me for which specific one I’m afraid I don’t have it in front of me at the moment. You could always post your question on the Microsoft tech community as well it’s great. All the best, Andy
I need remote users to disconnect from existing on-prem Domain that uses 365 E3 and join their devices to a new 365 Business Premium tenant to leveage InTune for these users/devices on a new domain required by a company split. When the users disconnect from XYZ on-prem AD domain will they be able to use the same profile as the .\XYZ domain user to connect to new Entra ID domain? Or should I have them make themselves a new local admin account and join the new Entra ID domain from that account?
As this is a migration, you will not be able to retain your previous settings. You will need to completely re-image these machines and join them to Entra ID. You could then migrate your current group policy settings into in tune and then reapply apps and so on.
@@AndyMaloneMVP These are remote users and I cannot re-image their machines. User have admin rights to the machine through the existing local AD Domain they will be disconnecting from. Can't I have them create a new local admin account and import all files they need. Then they join computer to Azure AD after first registering the device with Azure AD and when they are ready to join AZURE AD have them put machine in Workgroup: MSHOME to join (Entra ID) Azure Active Directory.
Only a few minutes into this video and it's already way more clear and concise than any other Intune video online. thank you!
Awesome thanks
p
That's so strange. My boss came up to me this morning and told me to configure intune for a new client. None of us know how to use it. The very same morning you upload this. Haha. Amazing. Thank you! :)
Awesome 👍
Great intro video, I was able to answer all related questions on an interview an get hired for a senior support role, thank you Andy.
No worries, you owe me a beer and well done 👍 😊
I’ve got a M365 and Intune Specialist job interview next week. Any tips for the interview?
Absolutely amazing, your videos are clear, complete, an infinitely resources for my Job, i don’t how i can tell you Thanks, thanks! I will vote for you of course. Patrizio from Rome!
Aw thank you so much I really appreciate that and just to hear you say that means a lot to me. Great to have you on board and I’m delighted that you find my content useful, all the best, Andy 😊
Andy, there is something to learn from you every time you post.
You are an amazing tutor ❤
Thanks so much I appreciate that😊👍
I was just looking for a video on this and could not find one that was as thorough as you, thank you Andy!
Thanks Sam 👍
This is helpful for the Md-102 @@AndyMaloneMVP
Absolutely wonderful! This has been very insightful and one of the best explanations about Intune. Thanks Andy.
Hi Andy, just worth mentioning the majority of security options in endpoint manager / intune usually require defender for endpoint licenses also and integration between defender and intune. Also, I think you can only register with Windows home in a BYOD context, you need pro or enterprise to join. Cheers!
You are indeed correct great points
Than you Andy, I've been using your videos for learning and found they are all worth a lot, we are fortunate to have you. God bless you.
Thanks so much. I appreciate that 👍
Andy, this is a big one in such a concise but clear manner. Definitely a proper Zero to Hero. I was able to use this lesson combined with my office's Intune deployment and learned a lot. Great stuff. Thank you!
Glad it helped!
This video was perfect as I needed to prep for an Intune deployment meeting. Great stuff, thanks!
Great explanation of how these various Microsoft tools work together. Thank you Andy!
Thanks Andy. I had no idea how powerful Intune could be.
Great video!
Hi Andy, i have been following your videos. Just want to say thanks for your level of patience and for making things simple. With this video, i can bravely put my head up and work in intune. Thanks
You’re very welcome and thanks
I really loved how passionate he is about this subject and how he transmits that to the audience!! Thanks for the video it helped me a lot at my job
You’re welcome 👍
Wow! I am into System administration now and I have no Idea what Intune is. After watching this video found everything absolutely same as what my Org is configured. Simply superb Andy. You are awesome!
You're very welcome!
hey bro, are you working in Azure? I would need some advise
This video helped me a ton with getting my Intune from zero to hero, just like you said! Thanks a lot for this valuable recourse. I'm now ready to roll my device out. Very solid, thorough video.
Very welcome!
Amazing video. Simple, clear, and concise. Thank you for your truly informative session. I actually learned something 👌
This has been an amazing run down of Intune and I really appreciate this. I had no idea intune was this powerful!!
Absolutely amazing stuff , Thanks Andy !!
You are my BEST Trainer. God bless you.
Many many thanks
superb and wow. they way you explain is amazing. Thank you
Thanks for taking the time to concisely explain about the bases of Microsoft Intune.
Thank you Sir, clearn/concise & an Awesome video to watch. Thanks Andy!
We are in this world always learning, in my case some things about Microsoft and English too, thank you for speaking clearer and calmer English, more wishes for this year.
Hi Andy, this is a great video, I work for an MSP and I have set this up on a few different 365 tenants now. I am just looking for confirmation that all i should need for policies to start working is:
1. The Relevant license
2. MDM set to ALL (or SOME and connected to an Entra Group)
3. Compliance and Config policies setup.
I am just trying to set things up in a very basic way to get us going and Microsoft really arent much help when you log it.
Sounds good to me 👍
Good refresher video. Much appreciated Andy. All the best!
Thank you so much for this general and thorough tour of this software. My client recently learned he had Microsoft Intune and wanted to learn how to use it and see what he could do with it. And it seems you can take advantage of it especially since they are 60+ users, including some remote ones.
Very good teacher thank you sir. from Bhutan now in the USA
Thank you Andy, It was very instructive session 💪💪
Thanks Andy. Very helpful video! You really took your time explaining this for everyone! Thanks a lot
It would have been interesting to see some examples of deploy on physical devices to understand how it works in "real life".
Tricky for a video though
Thankyou so much for the powerful video Andy😊. I have learned something from this video.
I’m delighted to hear that 👍
Seriously, way too easy to understand.Thank you Andy!
Starting to get my feet wet with Intune. This was very helpful. Thank you.
Awesome content. Thanks again👍
Thanks Andy this was really helpful and made my learning much easy.
it seems wonderful, and my office will soon be putting this approach into practice.
Hi,Andy unbelievable method,your Leander devolved is possible important issue to the learning
Hey Andy, always great stuff, thanks! You've been the key teacher to get our agency iPhones and PCs managed on Intune. Big big thanks! It's saved us so many hours of work and made us so much more compliant and secure. I'll be adding my first macOS computer with Intune next week and I'd love to get your take on doing it right.
Just follow the guide, it’s super simple. Best of luck 😊
Very informative information. Thanks a lot. Love from Kenya.
Glad it was helpful!
Awesome video, thank you for this information!
Keep it up. Love your work. Thank you for your sharing your knowledge
thank you for this video, will be using it in our organization in the near future
Thank you kind sir! Learned a lot from watching this video!
This is great i've inherited intune in new role - hasn't been fully implemented. I need to learn fast whats there and re-do - getting it working. I think i'll be watching the autopilot vid as well
A fantastic overview 😁
Thanks for the intro video. Got me started :)
Great Video, good explanation through the different settings.
Awesome video!!!!! Learning so much!!!!
Very Good Training Video, the only feedback I have is at 34:47 the blurred video becomes a lot clear which was hard for me to watch through the course from the start.
Interesting, thanks for the feedback
Thank you for such an easy tutorial!
Your videos and content are amazing. I would like to ask you how I can expertise in Intune as much as possible in 15 days.
Good job Andy MS Intune guidance
Thank you kindly
Can you please share me to how to use ms 365 business premium and premium future, I think we have purchased short time.
I really appreciate this fantastic video! ❤Do you have any recommendations for a comprehensive Intune course?
Will be using it soon, thanks for the basics!
Thanks Andy. I was wondering if you could do a more in depth video on Intune licensing. I'm having a hard time figuring out the differences between "Intune Plan 1" and "Intune Plan 1 Device". Basically trying to answer the question can I buy the device licenses, which are cheaper, to control our PC's and/or tablets. Thanks again.
I’ll see what I can do 😊👍
Great Session Andy 👍. Appreciate, If you could make another session for Co-Managed Devices in a Hybrid large scale enterprise.
I done something on this in the past, but yes, definitely time for a refresh soon I think 👍
About the AD and AAD Join it’s not entirely true that you have to reset the device if choosing the wrong option. While it is true that you need to reset a HYBRID AADJ device you can migrate an ADJ device to AADJ without a complete reset using a local admin account and a profile migration tool. Also you can do the same going from AADJ to ADJ. remove from azureAD reboot and join AD. Migrate profile. You can also migrate a profile from a local account into your AAD account using a tool like ProfWiz from Forensit
Great, as always. Thank you Andy!
Excellent recap video!
Thank you, great and thorough as always
My pleasure!
Hi,Andy unbelievable method, i think about your Leander, pleasure, thanks Andy bright way and way forward
That was brilliant, thank you!
Done voting!
Thanks for your Super Videos!
Thank you !
Thanks for the insight!
Excellent video. Quick question, after you wipe the device remotely, would you lose access to the device 16:35 ?
This is great video Andy. million thank you. I watched the entire video and made some notes and screenshots. I dont work for a company that have intune so how do i go about practicing it. is there a demo site that i can touch on it. I've watched your other videos regarding the server and I learnt a lot from practicing on local vm server and I would like to do the same with intune. is there a way? thanks again
Unfortunately, the only thing you can do is set up a trial Azure subscription
Hello Andy, I have learned a great deal from your channel and really appreciate how much time and effort you put into each video. When you first installed Windows 11 on this particular test machine, did you choose the "Domain join" option? Also, are you creating VMs in Azure for testing or using local resources? Thanks again!
Thanks very much for your kind comments. No I chose Azure AD Join😊
Fantastic video. However, its my understanding that the hybrid devices are still able to be managed through Intune by configuring the settings for Intune to manage those devices... Are there no setting options at the time of this video?
You are partly correct, yes. If you are in hybrid, and are using system centre with active directory locally you can enable co-management which provides a single pane of glass to both devices on prem and in the cloud, but they are still authenticated either by active directory or by. Entra ID
thank you sir very nice
vey nice we need more
Again, thank you for another excellent video. One question here - you demonstrate Azure vs Hybrid registered devices. But what if all we see under Join Type is "Microsoft Entra Registered" ? How does one go about getting all their devices to be an Azure AD type? We are hybrid.. we have on-site servers, a local DC, but just got our Biz Premium license to gain Intune and other features. I don't want to bugger this up.
Entra ID is Azure AD. These are corp managed devices. Registered are byod devices that can have an app portal installed.
@@AndyMaloneMVP Oh... uh oh? They are all corp-owned devices, previously joined to our local domain. So even if I deploy InTune, they won't be fully manageable like your video shows then ?
Hi Andy Many Thanks for your content .Which Licence do i need to use Microsoft intune does p2 licence will work intune
You need to have either an insurance license or have it included with an EM&5 and E5. It’s also included with business premium for smaller businesses 👍
Great video but I'm running into an issue ... when on the MDM screen (Entra > Settings > Mobile > InTune) everything is grayed out and it states that new WIP w/o enrollment policies are no longer supported. Not sure where to go from here and hitting dead end after dead end. Suggestions?
Sounds either like a license or probable permissions issue
Very well done thank you.
Glad it was helpful!
Hi, thank you for the video. I have a couple of questions. When you join a user to Azure AD, like in your example, does it show as a local administrator and not just as a user? My second question is, I have an on-premises Active Directory and most of the workstations are joined to the domain. How can I switch to Intune and manage them through the portal?
When you join a user to Entra ID they will come in as a user not an administrator. Also, if you have workstations that are currently in hybrid these will need to be reset before you can join them via Intune
Hi Andy, Love your channel, thank you! Quick question at 22:05 you talk about putting a link in the description to your Autopilot Deployment video. Could you please point me to the correct video.
th-cam.com/video/hzlISDO51-Q/w-d-xo.html
Hi Andy, thank you so much for all of the first class help. I do need help though. ,thanks to you, I now run mdm for my company. I have devices across a number of platforms including Android. I use the corporate owned android setup but read that Google is stopping in 2024 some aspects of android . I can’t figure out whether I will be affected by this. Could you offer some advice. Although I manage this I’m not confident that I understand whether I need to act now or not. Thank you!
Best advice is check the Microsoft Intune Blog and the Microsoft Tech Community :-)
Hi Andy, I'm a little confused with a statement at 21:20 ish where you state about "enrolling into Intune, not MDM, but Intune"..... are you not enrolling into MDM when you enroll into Intune?
Yes, and no, you can enroll into MDM via Entra ID. But to get full management capabilities, you need to add on Intune license. I know it’s a little confusing. Microsoft 365 support’s free MDM for mobile devices, but if you want to manage them, you really do need Intune.
Very helpful
amazing thanks
This method leaves the account as a local administrator, which is a big no-no for many people. My understanding is the best practice is to just go ahead and get the hardware Hash (To allow for Autopilot) using PowerShell, wipe the machine, and log the user in from OOBE. Or is it sufficient to just downgrade the user and get the hardware hash?
Remember you also have the new LAPS service which can backup and auto rotate admin passwords
I haven't seen this method from being AzureAD joined used by organizations. We typically get the hardware hash using Powershell and reinstall the device. After reinstall Autopilot takes care of the rest.
Absolutely and in a previous demo I did it that way as well :-) But you can 🙂
@@patrick__007 where I work, we've been using LAPS.
It's awesome & was a huge help giving it to contractors to remediate CrowdStrike BSOD devices, after which the LAPS pass is easily rotated :)
Hi Andy, are there basic compliance rules that you would recommend putting by default?
Depends on your business. There are some great compliance templates that walk you through steps along with features like compliance score help ensure that these are implemented correctly 👍😊
Thank you Andy, I will look for these template to help us get started
Hello Andy. Thank you for this video. Is there a way to do Azure AD Join (not hybrid, we dont have any local Domain Controller) with Windows Server 2019 Standard? We use this server for Remoted Desktops. Thank you
Short answer yes. But you'll to create SMB fileshares via Microsoft Azure. learn.microsoft.com/en-us/azure/storage/files/storage-files-introduction
Iam creating a lab for a college project, its going to be hybrid onsite arch. At the 15 min mark you say you cant manage a hybrid AD joined machine on intune/ep manager. Does that mean if I want to manage the machine I need to join it to the domain through Azure rather than the non Azure classic way? If I understood correctly. My plan was to build the active directory then replicate it to Azure through AD connect or similar. But now wonder if I should just join the computers to Azure first? I hope that makes sense I'm new to Azure, any guidance appreciated 😅
Clients directly to Entra ID & I tune. What is the server for? Ask the questions do you really need it.
@AndyMaloneMVP It's just a lab nothing that will be used in the real world, and nothing more than just showing we can set up ad/entra etc. My plan was to build two sites and then replicate them on Azure/Entra through connect and then the devices could be managed through Intune. But it seems I will have to join them to Entra while setting up the clients. Which is fine, just something to keep in mind. The domain doesn't even need to be configured fully anyway, just a few users and a computer or 2 its just for proof of concept and some screenshots.
Thank you good stuff
Great video! What did you mean by, "You need to reset the machine?" Would that be eg "Reset this PC?"
Yes, exactly
@Andy Malone MVP great video, but if i login on the computer first time, the system wants to active helo or the app. How do you disable this? I have many company they don't want this.
This is in the device config. Or enrolment profile set by Admin
@@AndyMaloneMVP can you make a short video how to disable them? Please! I am a little bit frustradet . I have joined like you the aad, but i can't see the machine in the intune portal. I also get online one option to disconnect, but not the option like you "manged by "
@@meinsda5983 sure I can do a follow-up video for you no problem
@@AndyMaloneMVP thks. I don't know why but my mdm was disable, now i can login, but a video how to disable "mfa functions etc" would be great!
@@meinsda5983 half of these features are disabled by default. As an admin feature to switch them on
if u wanna try all these features, is anything like a test enviroment that u can experiment?
Sure, take out a trial E5 subscription
I thought by selecting "all users" in MDM settings it enrolls those devices to Intune. So with that being said, shouldn't the number of devices in Entra ID more closely resemble the amount of devices in Intune?
Not necessarily as Intune does not support Hybrid joined devices. These only show up in MDM & Cinfig manager.
18:59: Entra > Mobility > Intune: the MAM user scope is missing ... what could be the reason?
Licence
Hi Andy,
To be able to add a device to Intune via the account setting in Windows 11 - should the user be administartor ?
Also, the user can disconnect himself (his device) , is that normal ? Could we set it up to ask tobe admin of the device to have the right to disconect ? Thanks !
Yes, I believe that the settings are included in the windows 11 profile. However, if you’re asking me for which specific one I’m afraid I don’t have it in front of me at the moment. You could always post your question on the Microsoft tech community as well it’s great. All the best, Andy
Really nice done. But how can I do this on a fully updated Win10 Pro machine. I didn't find the options like in your demo with Win11
You need the pro or enterprise addition?
@@AndyMaloneMVPI found it. Thx for reply
Thanks
I need remote users to disconnect from existing on-prem Domain that uses 365 E3 and join their devices to a new 365 Business Premium tenant to leveage InTune for these users/devices on a new domain required by a company split. When the users disconnect from XYZ on-prem AD domain will they be able to use the same profile as the .\XYZ domain user to connect to new Entra ID domain? Or should I have them make themselves a new local admin account and join the new Entra ID domain from that account?
As this is a migration, you will not be able to retain your previous settings. You will need to completely re-image these machines and join them to Entra ID. You could then migrate your current group policy settings into in tune and then reapply apps and so on.
@@AndyMaloneMVP These are remote users and I cannot re-image their machines. User have admin rights to the machine through the existing local AD Domain they will be disconnecting from. Can't I have them create a new local admin account and import all files they need. Then they join computer to Azure AD after first registering the device with Azure AD and when they are ready to join AZURE AD have them put machine in Workgroup: MSHOME to join (Entra ID) Azure Active Directory.
Excellent!!!!
When adding account, i do not see the alternate actions to then connect to azure AD
OS requires Pro or possible w Home
Pro & Enterprise
Hi Andy, I m not a relevant to IT fild so can you beefed the intune in Microsoft is Les1
I’m sorry, I do not understand the question
@@AndyMaloneMVP I am asking you I am a fresher can you share the class 1