Join a New Windows 10 Device to Azure AD – Deploy and upgrade operating systems

Join a New Windows 10 Device to Azure AD

You can use Windows Autopilot to manage a device once it’s powered. Autopilot guides the user to enable the device to be joined to Azure AD and auto-enrolled in Microsoft Intune. However, if the organization does not use Windows Autopilot, the user can manually take a new Windows 10 device and join the device to Azure AD during the first-run experience.

If the device is running either Windows 10 Professional or Windows 10 Enterprise, the Out-Of-Box Experience (OOBE) will present the setup process for company-owned devices, which is described below.

To join a new Windows 10 device to Azure AD during the first-run experience, use the following steps:

1. Start the new device and allow the setup process to begin.
2. On the Let’s start with region. Is this correct? page, select the regional setting that you need and select Yes.
3. On the Is this the right keyboard layout? page, select the keyboard layout settings and select Yes.
4. On the Want to add a second keyboard layout? page, add a layout, or select Skip.
5. The computer attempts to automatically connect to the internet, but if it does not succeed, you will be presented with the Let’s connect you to a network page where you can select a network connection.
6. On the Sign in with Microsoft page, enter your organization or school account and select Next.
7. Enter your password and select Next.

 Exam Tip

If the Azure AD administrator has configured it, you might be prompted to confirm your identity using another authentication factor, such as a text message, or use of the Authenticator app.

8. Your device is now Azure AD joined and enrolled in Intune for MDM. Depending on settings, you will be presented with the Setting up your device for work page.
9. On the Choose privacy settings for your device page, choose the appropriate settings and then select Accept. Device setup might continue, depending on the settings being applied to your device through MDM.
10. Depending on organizational settings, your users might be prompted to set up Windows Hello. By default, they will be prompted to set up a PIN. When prompted to set up a PIN, select OK.
11. In the Set up a PIN dialog box, enter the desired PIN twice and select OK. Your desktop should now display.

You should now be automatically signed in to the device and joined to your organization or school Azure AD tenant and presented with the desktop.