Bring the Intune Management Extension to ALL Win10 MDM managed devices
Currently, the Intune Management Extension requires AzureAD joined; AzureAD registered is not sufficient. This limits the manageability of BYOD devices, taking Powershell script and Win32 app deployment off the table. Make it so that MDM-only devices can use this extension too!
It is a pity, that AAD registered devices cannot use the extension. This should be changed, since a lot of software that BYO (no domain join) devices should use, is provided by setup.exe files. Converting to MSI is sometimes not possible or very crucial.
It works for Hybrid Joined, but you need to use GPO/BULK autoenrollment, unfortunately. It needs manual enrollment support too.
We also need this for existing equipment that was distributed to end users in the field (no domain network) before we got on board with EMS + Intune. Newly deployed assets will autoenroll and receive the extension just fine. But the best we can do with our existing deployed assets is to get them into Intune as 'userEnrollment', which gets them policy but doesn't get them the management extension. Only windowsAutoEnrollment and windowsAzureADJoin get the management extension.