Skip to main content

114: Review provisioning strategy

Overview

When enrolling Windows devices in Microsoft Intune, you have several options:

Windows Automatic Enrollment:

  • Use Case: Suitable for personal and corporate-owned devices running Windows 10 and Windows 11.
  • Benefits:
    • Enables automatic enrollment for personal devices registered with a Microsoft account.
    • Supports bulk enrollment using the Windows Configuration Designer app.
    • Allows automatic enrollment of hybrid Entra join via group policy.
  • Drawbacks:
    • Requires Microsoft Entra ID Premium P1 or P2 licenses.
    • Not ideal for remote workers or BYOD scenarios.
    • Best for organization-owned devices.
    • Requires users to sign in with their organization account.

Windows Autopilot:

  • Use Case: Ideal for new or reset devices.
  • Benefits:
    • Streamlines device setup and configuration.
    • Simplifies user experience during initial device setup.
    • Supports self-service deployment.
  • Drawbacks:
    • Requires Windows Autopilot deployment profiles, device registration, and Entra ID Premium P1 or P2 licenses.
    • Limited to Windows 10 and Windows 11 devices.
    • Not suitable for BYOD scenarios.

BYOD (User Enrollment):

  • Use Case: Specifically for personal devices (Bring Your Own Device).
  • Benefits:
    • Separates work and personal data on the device.
    • Respects user privacy.
    • Allows users to enroll their own devices.
  • Drawbacks:
    • Limited control over the entire device.
    • Not suitable for organization-owned devices.
    • Requires user interaction during enrollment.

Co-management with Configuration Manager:

  • Use Case: For organizations using both Microsoft Intune and Configuration Manager.
  • Benefits:
    • Allows gradual transition from Configuration Manager to Intune.
    • Provides flexibility in managing devices.
    • Supports hybrid scenarios.
  • Drawbacks:
    • Complexity due to dual management.
    • Requires Configuration Manager infrastructure.

Reference