5Dec
Register Devices to Azure AD – Deploy and upgrade operating systems
Register Devices to Azure AD

You connect a Windows 10 device to Azure Active Directory using the Add Work Or School Account feature found in the Settings app. Device registration can be used to allow devices to be known by both Azure AD and MDM solutions.

Devices that are registered with Azure AD and managed by Microsoft Intune can have conditional access rules applied to them. In this way, personally owned devices can be configured so that they meet your corporate standards for security and compliance.

Use the following procedure to take an existing Windows 10 device and register it with Azure AD:

  1. Open the Settings app and click Accounts.
  2. In Accounts, select the Access work or school tab.
  3. Select Connect.
  4. On the Set up a work or school account page, displayed in Figure 1-4, enter your organizational email account, select Next, and then complete the wizard.

To verify that your device is registered to your organization or school Azure AD tenant, complete these steps.

  1. Open the Settings app and select Accounts.
  2. In Accounts, select the Access work or school tab.
  3. On the Access work or school page, verify that your organization or school Azure AD email address is listed under the Connect button.

Note Register Byo Devices to Azure AD

You can register a personally owned device with Azure AD using the Set Up A Work Or Education Account wizard. Personal devices are then known to Azure AD but are not fully managed by the organization.

The role of MDT and Configuration Manager

If your organization is predominantly managing an enterprise on-premises environment, it’s highly likely you’ll be using MDT and possibly also Configuration Manager. These tools enable you to deploy, configure, and manage Windows 10, apps, and drivers within your infrastructure. You’ll also likely be using Configuration Manager to collect data from your devices for inventory, upgrade planning, update status, and many other purposes.

Some organizations might intend to manage a hybrid infrastructure, with devices configured as part of both an on-premises Active Directory forest and enrolled in Intune. In these scenarios, you’ll need to consider which device management workloads are best handled by Intune, and which by Configuration Manager.