Policy
Enable automatic MDM enrollment using default Azure AD credentials
This policy setting specifies whether to automatically enroll the device to the Mobile Device Management (MDM) service configured in Azure Active Directory (Azure AD). If the enrollment is successful, the device will remotely managed by the MDM service. Important: The device must be registered in Azure AD for enrollment to succeed. If you do not configure this policy setting, automatic MDM enrollment will not be initiated. If you enable this policy setting, a task is created to initiate enrollment of the device to MDM service specified in the Azure AD. If you disable this policy setting, MDM will be unenrolled.
ba635e08f21a MDM_JoinMDM_DisplayName Registry
Copy registry mappings
HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\MDM\AutoEnrollMDM (enabled) = 1
HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\MDM\AutoEnrollMDM (disabled) = 0HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\MDM\MDMApplicationIdHKLM\Software\Policies\Microsoft\Windows\CurrentVersion\MDM\UseAADCredentialTypePolicy notes
This policy setting specifies whether to automatically enroll the device to the Mobile Device Management (MDM) service configured in Azure Active Directory (Azure AD). If the enrollment is successful, the device will remotely managed by the MDM service. Important: The device must be registered in Azure AD for enrollment to succeed. If you do not configure this policy setting, automatic MDM enrollment will not be initiated. If you enable this policy setting, a task is created to initiate enrollment of the device to MDM service specified in the Azure AD. If you disable this policy setting, MDM will be unenrolled.