A central location for managing device identities and keeping track of associated event data is provided by Azure Active Directory (Azure AD).
You may view the overall number of devices, stale devices, noncompliant devices, and unmanaged devices in the devices overview. Links to Intune, Conditional Access, BitLocker keys, and fundamental monitoring are also included.
The overview page’s device counts don’t refresh instantly. Every few hours, changes should be reflected.
- Find devices, such as those that have joined or registered with Azure AD.
- deploying devices using Windows Autopilot
- Universal Print-compatible printers.
- Complete device identity management operations like managing, deleting, and enabling devices.
- In Azure AD, there are few administration options for printers and Windows Autopilot. These devices’ individual admin interfaces are where they must be managed.
- Set up the identity settings on your device.
- turn enterprise state roaming on or off.
- Review audit logs for devices.
- download tools.
Finest Advice:
Windows 10 or newer devices that have joined hybrid Azure AD do not have an owner. If you can’t locate the device you’re looking for while searching by owner, try searching by device ID.
The device has been synchronized from Azure AD Connect and is awaiting the client to finish registration if you notice a device that is Hybrid Azure AD connected with a state of Pending in the Registered column. For planning advice, see How to Implement a Hybrid Azure AD Join. Visit Device management frequently asked questions for further details.
Apostrophes in device names for some iOS devices may be replaced with other characters that resemble apostrophes. Therefore, looking for such devices can be challenging. A matching apostrophe character must be included in the search string if you don’t receive the expected search results.
Control a device using Intune
You can manage devices for which mobile device management is identified as Microsoft Intune if you have access to manage devices in Intune. The Manage option won’t be available if the device isn’t signed up for Microsoft Intune.
Activate or deactivate an Azure AD device.
There are two methods for turning on or off devices:
- the toolbar that appears on the All-devices page after you select one or more devices.
- After drilling down to find a specific device, the toolbar.
Important:
- To enable or disable a device in Azure AD, you must be a Global Administrator, Intune Administrator, or Cloud Device, Administrator.
- A device cannot use Azure AD to authenticate after being disabled. This prohibits it from using Windows Hello for Business credentials or gaining access to Azure AD resources that are secured by device-based Conditional Access.
- The Primary Refresh Token (PRT) and any other refresh tokens on a device are revoked when it is disabled.
- In Azure AD, printers cannot be enabled or disabled.
Delete a device from Azure AD
There are two methods for removing a device:
- The toolbar that appears after selecting one or more devices from the All-devices page.
- After you drill down for a specific device, the toolbar.
Important:
- To delete a device in Azure AD, you must be a Cloud Device Administrator, Intune Administrator, Windows 365 Administrator, or Global Administrator.
- In Azure AD, printers and Windows Autopilot devices cannot be removed.
- Remove a device:
- blocks access to your Azure AD resources.
- removes any information associated with the device. For instance, Windows device BitLocker keys.
- This activity cannot be recovered. We don’t advise it unless it’s necessary.
Make sure a device is wiped or retired before deleting it if it is administered by another management authority, such as Microsoft Intune. Prior to deleting a device, see How to manage stale devices.
For more information, contact Professional Labs, the Best Cloud Managed Services Provider.
Contact Us | Professional labs (prolabsit.com)
