TroubleShoot Intune Enrollment
Synopsis: Troubleshooting 'automatic' Intune Enrollment.
Published November 29, 2025
Last Modified: November 29, 2025
Intro: Some steps for fixing Intune enrollment failures. This does not attempt to RCA the issue, and is meant to be applied in bulk.
Published November 29, 2025
Last Modified: November 29, 2025
Intro: Some steps for fixing Intune enrollment failures. This does not attempt to RCA the issue, and is meant to be applied in bulk.
Quick Run Down
-
1.) Tenant Settings
2.) Clear Reg Keys
3.) Leave and Rejoin
Tenant Settings.
-
Place Holder
Event Viewer
-
Review Event Viewer under 'Applications and Services' > Microsoft > Windows > DeviceManager
Encountered error 0x8018002a. Resolved by excluding 'Microsoft Intune Enrollment' from Conditional Access MFA policies.
Clear Reg Keys
The following PS script will attempt to clear out all the reg keys in the Enrollments section. Some will remain. - No idea why.
Powershell
Remove-Item -Path "HKLM:\SOFTWARE\Microsoft\Enrollments\*" -Recurse -Force
Leave and Rejoin. (Option for new profiles.)
-
CMD
- Confirm there are no orphan devices in Entra AD. Delete manually if present.
- Join Entra AD with the previously created DEM account.
- Select Connect.
- Select 'Join this device to Microsoft Entra AD' (at the bottom of the window).
- Sign in with the DEM account. ( Or licensed user.)
dsregcmd /leave
-
CMD
start ms-settings:workplace