Enroll non-Windows devices – Manage, maintain, and protect devices

 Last updated on August 2, 2024  Posted by 
Share: TwitterFacebookPinterestLinkedin

Enrolling non-Windows devices uses a similar approach. Let’s examine the process for Android and iOS.

Enroll Android Devices

To enroll Android devices, use the following procedure:

  1. On the Android device, open the Google Play store.
  2. Search for and install the Intune Company Portal app.
  3. Launch the Intune Company Portal app.
  4. Click Sign In and then sign in using the appropriate user account from your Microsoft 365 subscription.
  5. Follow any instructions given in the portal; these will vary based on the configured settings in Intune. Typically, you are asked to accept new settings on your device. Click Continue on each screen to proceed through setup and enrollment.
  6. Finally, you are asked to activate the device administrator. Click Activate. Your device is registered.
  7. If configured, you are asked to define a device category. Select Done.
  8. When the process is complete, select Done.

After deployment, use the Microsoft Entra admin center to view the enrolled device. The device’s Join Type should be Azure AD registered, and its MDM should be Microsoft Intune. You should be able to see the operating system listed in the OS column as Android.

Enroll IOS Devices

Enrolling iOS devices, such as iPhones, is a similar process to that used for Android. However, there is one additional step. You must first configure and deploy an Apple MDM Push certificate. Use the following procedure to complete this step:

  1. Open the Microsoft Intune admin center.
  2. In the navigation pane, select Devices, select iOS/iPadOS, and then select iOS/iPadOS enrollment.
  3. Click Apple MDM Push certificate.
  4. On the Configure MDM Push Certificate page, select the I grant Microsoft permission to send both user and device information to Apple check box.
  5. Click the Download your CSR link. When prompted, select Save to save the IntuneCSR.csr file to your local Downloads folder.
  6. Click the Create your MDM push certificate link. A new Edge browser tab opens. Sign in using an Apple ID. A verification code is usually sent to one of your Apple devices. Enter the code in the browser window.
  7. Select Create a Certificate.
  8. Accept the Terms of Use, and then select Accept.
  9. Select Choose File, and browse to locate the IntuneCSR.csr you downloaded from Intune earlier. Upload this file.
  10. Select Download to download the Apple Push Certificate. It has a .PEM file extension.

Remember that the certificate signing request file has a .CSR extension and is uploaded to Apple, while the Apple Push Certificate has a .PEM extension and is downloaded before being installed in Intune.

  1. In the Microsoft Intune admin center, switch to the browser tab, and in the Apple ID box, enter the Apple ID used to create your Apple MDM push certificate.
  2. Browse and locate the Apple MDM push certificate you just downloaded.
  3. Select Upload.

After you have completed the process, use the following procedure to enroll an iOS device:

  1. Sign in to the Apple Store on the Apple device.
  2. Search for and install the Intune Company Portal app.
  3. Launch the Intune Company Portal app.
  4. Click Sign In and then sign in using the appropriate user account from your Microsoft 365 subscription.
  5. Follow any instructions given in the portal; these will vary based on the configured settings in Intune.

After deployment, use the Microsoft Entra admin center to view the enrolled device. The device’s Join Type should be Azure AD registered, and its MDM should be Microsoft Intune. You should be able to see the operating system listed in the OS column as iPhone or iPad.

Author: Cheryl Casey

Leave a Reply

Your email address will not be published. Required fields are marked *