Hello, it is an active directory account and indeed the first start was made by cable to the corporate network. but from one moment to the next the machine started with this problem. Apparently when starting with the local account it performs some validation that then allows me to access the domain account. Any idea what it could be?
This is a huge wide open question given how many different approaches there are for Intune/MDM management.
I thank you in advance for your response 🥰and in my case the only solution I found was to delete the domain account from the machine and create it again, since nothing I tried worked. even delete all machine logs in InTune. I am baffled because I have never experienced this problem in my company.
In the hypothetical case of using Azure, it could be said that the network connection to Azure is definitely not being established when trying to start with the domain account. Please correct me if I'm wrong.
Remember, Intune requires that you’re using Azure Active Directory. So if you’re trying to eliminate the machine from the entire environment simply deleting from Intune is not enough. The next time Azure AD syncs it will show up again.
I’m not very experienced with the Mac integrations for Azure (yet), but on the windows side (providing you’re not onPrem domain based), once the machine is Intune enrolled you can sign in for the first time by using the full M365 email address for the username. Only a regular internet connection is required. That’s assuming there are no conditional policies in place mandating an active VPN connection.
Is correct one is linked directly using the MacOS directory utility. but in the end the solution I had was to delete the domain account on the macbook and create it again. I hope the incident does not happen again. Although it's asking too much, I know it will happen again until I know what the real cause is. I think there is a corrupted domain account service that is only enabled if I first log in to a local account that has no problems.
Again, I'd STRONGLY advise against binding the Macs directly to Active Directory. It doesn't buy you much and it only brings headache. NoMAD and Jamf Connect functionally accomplish the same thing. Your certificates (which are really the only other difference) can be handled by Intune or any other MDM solution.
Yup. That’s why I’m avoiding it entirely when bringing our Mac users under management.
You are right, I work in the technical support area of a bank in Chile and I am experiencing continuous cases of this type, unfortunately the bank does not want to invest in jmaf, which is what I proposed, and now they are evaluating buying Work space One from VMWAREA I just hope this situation improves because I can't be deleting and creating accounts every time this happens.
I am just discovering the impact of working this way, directly using AD on Macs, it is a terrible experience, I have users who are affected by this problem every day.
