Add Windows 10 Pro to Azure AD
Hi Experts,
We have a client whose machines are in workgroup mode so no AD or any on premise infrastructure. We are looking to add them to Azure AD since they already have E3 licenses and are using Office 365. My questions are:
1. Will their logins change on their machines? i.e. currently they sign in as somerandomname, will their computer login change to username@domain.com for their computer? I am just thinking if we will need to do a profile migration to preserve all their settings?
2. What Office 365 licenses are needed to achieve this? They have E3 and are on Windows 10 Pro. Do they need Windows 10 Enterprise to join Azure AD?
Thanks in advance
We have a client whose machines are in workgroup mode so no AD or any on premise infrastructure. We are looking to add them to Azure AD since they already have E3 licenses and are using Office 365. My questions are:
1. Will their logins change on their machines? i.e. currently they sign in as somerandomname, will their computer login change to username@domain.com for their computer? I am just thinking if we will need to do a profile migration to preserve all their settings?
2. What Office 365 licenses are needed to achieve this? They have E3 and are on Windows 10 Pro. Do they need Windows 10 Enterprise to join Azure AD?
Thanks in advance
ASKER
Thanks Jackie, is there a difference between registering and joining a domain? Plan is to use MDM intune to manage these devices, will intune work for registered devices? Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
You can try below articles on Intune and MDM
IT explains registration vs joining as well along with Intune security
https://www.experts-exchange.com/articles/33219/Microsoft-Intune-Windows-Information-Protection-WIP-for-Windows-10-Part-I.html
https://www.experts-exchange.com/articles/33226/Microsoft-Intune-Windows-Information-Protection-WIP-for-Windows-10-Part-II.html
IT explains registration vs joining as well along with Intune security
https://www.experts-exchange.com/articles/33219/Microsoft-Intune-Windows-Information-Protection-WIP-for-Windows-10-Part-I.html
https://www.experts-exchange.com/articles/33226/Microsoft-Intune-Windows-Information-Protection-WIP-for-Windows-10-Part-II.html
Do note that the benefits of joining a device to AAD will only be in effect if the user is logging in with their O365/Azure AD Account. So to expand on your question 1 - if you join a machine when a local profile is already created, the local profile remains active and can still be used. However, if you want to get the best experience, the user has to login with their O365 one, using the AzureAD\user@domain.com format and their cloud password.
E3 is sufficient as long as you have a supported W10 version.
E3 is sufficient as long as you have a supported W10 version.
You can choose to register instead of join to Azure AD.
If you select to register, you do not need to create a new user profile.
Q2
All users of Office 365 licenses have free Azure AD Basic licence.
To join to or register on Azure AD requires Windows 10 PRO, Education or Enterprise edition.