Adding Existing Entra devices to Intune

Posted by TheKingOfSpite@reddit | sysadmin | View on Reddit | 3 comments

Right I have been struggling with this, I know there's documentation out there, and I've read most of it, but clearly I'm messing this up somewhere. We have around 200 users that we've given Business Premium licenses to. These machines are all Workplace joined, and and they use a hybrid environment with Entra connect. I have tried using the script from here (https://call4cloud.nl/2020/05/enroll-existing-entra-azure-intune/) to enrol these devices to Intune, but it will only work on users that are admins and obviously we don't want that Have tried running in elevated context through RMM but it still gives the following errors Auto MDM Enroll: Device Credential (0x0), Failed (The system tried to delete the JOIN of a drive that is not joined.) CanEnroll Error: MDM enrollment is not allowed due to failed access check(administrator or allowed user, capability check) with HRESULT: (Access is denied.).

3 Comments

[-]

Hugoadmin@reddit

Did you already collect the autopilot hashes from the workstations and add them to intune?

TheKingOfSpite@reddit (OP)

Hmm that's a method I've not tried yet. So I'd collect the hardware hashes (I'm guessing from Entra), import the CSV, and then I've effectively done it manually using Autopilot? Or, maybe I'm misinterpretting you and I've just totally missed an important step in the method I was trying

I know manual way to collect the hash from the machines using powershell, .csv import is done in intune under Devices, Device onboarding, Enrollment and (Windows Autopilot) Devices, after this you need to create a Deployment Profile

Reply to Post

3 Comments