Here are some answers to common issues with Intune
1.Ensure you have LAPS enabled in https://portal.azure.com -> Microsoft Entra ID ->
Devices -> Device Settings.
2. Ensure you have a local administrator account created. See Part 1 of my guide.
3. Ensure you have added the account created in the previous step, added to the Local Administrators Group by creating a policy in
Endpoint Security.
4. Ensure you have created the required Local admin password solution (Windows LAPS) policy.
5. Ensure all of these settings are assigned to the correct group.
You can find the local administrator password in https://portal.azure.com -> Devices -> Local Administrator Password Recovery
Then select the required device, then Local Administrator Password Recovery
1. Is the user in a group that is permitted to join Intune?
2. Does this group have the proper license?
3. Is this group assigned to an enrollment profile?
4. Does the user have too many devices already registered?
5. Does the device have an active internet connection?
It is possible to join a device, being Windows, iOS or Android by one user, and have another user use it. For example, if you have a department that has the same software requirements, you can create a user, and add it to your Intune group, that is licensed for Intune. This will utilize 1 license. This user can then, by default register up to 15 devices. You can then have the end user login and use the device.
In my workplace, we do this for iPads, as all users are assigned the Office 365 E1 License, which gives them access to Microsoft 365 Apps, e-mail and OneDrive / Sharepoint. We can also push apps to the iPads for immidiate install, or available for install through Company Portal.
Redistribution of iPads is quick and simple (much faster than Windows) as the wipe process is quick, registration and app install is simple.
If you've "purchased" your apps in Apple Business Manager and they arent showing up in Intune to be assigned, go to https://intune.microsoft.com -> Tenant Administration -> Connectors and Tokens -> Apple VPP Tokens. You'll see your token listed, and on the far right see three dots. Click the dots and select Sync. You'll see your recently purchased apps, ready to be deployed in a few moments. This is usually very fast.