Enroll devices using Microsoft Intune - Manage corporate enrollment policy Flashcards
What domain can be used for initial setup or testing in Intune?
.onmicrosoft.com
This domain is only for initial setup or testing purposes.
Can you rename or remove the initial onmicrosoft.com domain name?
No
What can you do with custom domain names in Intune?
Add, verify or remove
Custom domain names can be managed to maintain business identity.
Fill in the blank: You can decide to use only the _______ domain for initial setup or testing.
.onmicrosoft.com
True or False: You can modify the initial onmicrosoft.com domain name in Intune.
False
What is the purpose of using custom domain names with Intune?
To keep your business identity clear
Custom domains help in maintaining a professional appearance.
What are the 4 steps to add and verify your custom domain
- Go to the Microsoft 365 admin center and sign into your administrator account.
- In the navigation pane, choose Setup - Domains.
- Choose Add domain, and type your custom domain name. Select Next.
- The Verify domain dialog box opens giving you the values to create the TXT record in your DNS hosting provider.
As an Intune admin, what are the 3 ways you can follow to simplify enrollment ?
- Enable automatic enrollment (Microsoft Entra ID P1 or P2 required)
- CNAME registration
- Enable bulk enrollment (Microsoft Entra ID P1 or P2 and Windows Configuration Designer required)
What is automatic enrollment?
Automatic enrollment lets users enroll their Windows devices in Intune.
Automatic enrollment simplifies the process of device management for organizations.
What is automatic enrollment?
Automatic enrollment lets users enroll their Windows devices in Intune.
Automatic enrollment simplifies the process of device management for organizations.
How do users enroll their personally owned devices in Intune?
Users add their work account to their personally owned devices.
This process allows personal devices to be managed under corporate policies.
What is required to join corporate-owned devices to Microsoft Entra ID?
Corporate-owned devices must be joined to Microsoft Entra ID.
Joining ensures that the device is recognized and managed by the organization.
What happens in the background when a device is enrolled?
The device registers and joins Microsoft Entra ID.
This registration is crucial for management and security purposes.
What happens once a device is joined with Microsoft Entra ID?
The device is managed with Intune.
Intune provides a range of management features, including security policies and application management.
What are the 5 steps to configure automatic MDM enrollment?
- Sign in to Microsoft Intune admin center
- Select Devices - Enroll devices - Automatic enrollment.
-
Configure the MDM User scope. Specify which users’ devices should be managed by Microsoft Intune. These Windows devices can automatically enroll in Microsoft Intune.
- None - MDM automatic enrollment is disabled. Default value
- Some - Select the Groups that can automatically enroll their Windows devices
- All All users can automatically enroll their Windows devices -
Use the default values for the following URLs:
- MDM Terms of use URL
- MDM Discovery URL
- MDM Compliance URL - Select Save.
To configure MDM enrollment, what can you do if you don’t have Microsoft Entra ID P1 or P2?
you can create a domain name server (DNS) alias (CNAME record type) that redirects enrollment requests to Intune servers.
What happens if no CNAME record is found?
users are prompted to manually enter the MDM server name, enrollment.manage.microsoft.com.
How can you configure manual enrollment, using CNAME?
Step 1: Create CNAME records
Step 2: Verify CNAME
