Enrolling WIndows 10 without Admin privs (No SCCM, Existing devices)
I need an Enterprise solution. I understand that we need Local Admin account to enroll Windows 10 devices to Intune. But i have 800+ devices, Domain joined (AD and Hybrid Azure AD). We do not use SCCM.
These are existing devices so i cant even use Autopilot. I need a solution or way or a feature in Intune which allows me to enroll Windows 10 devices without giving them the Administrator privileges. Please respond to this request ASAP
Martin Fuhrmann commented
Please support as soon as possible. thx!
Ben Hos commented
http://www.scconfigmgr.com/2018/08/30/configure-restricted-groups-with-intune-policy-csp/ this could help you post enrollment.
Chris Kennedy commented
It's doable with 1809 and the correct GPO now. Wasn't doable previous to 1809. However, it only works for domain joined devices. Non-domain joined apparently still require admin.
Need a solution to Auto enroll over 600 devices
Paul Youngberg commented
Same, please support ASAP!
If you use GPO on a Hybrid Domain Joined device then you need admin rights.
when you use a gpo to enroll the device into AzureAD or MDM they do not require local admin rights and you keep the user affinity in azure.