579 votesAnonymous commented
Took me a while to understand that PS script were only working on AAD joined device (maybe that should be clearly notified in the UI).
This request is still not even marked as noted... I'm wondering if they can have it working on hybrid joined device, maybe some permission issue. Or they just think that as these devices are "hybrid" we relay on another on-prem solutions for computer management and software deployment. However in many cases we can't go full Cloud so it's important that we have as many options as possible available to support a broad range of scenario.
Having the possibility to run PS script is not only a good thing for installing software but can be used also in place of GPO (when no MDM policy).
Thank you for your feedback on this! I can confirm we have started work on this item. We anticipate releasing it sometime before the end of the year. We appreciate your patience.
80 votesAnonymous commented
I think first they should allow multiple conditional access policies. Mobile device and PCs should have separate configuration, as you might want to let some users access from non ad joined or compliant PC or Mac. In the other hand you can still want to inforce them to be compliant with their mobile device.