Making the transition to modern cloud-based management of your Windows 10 devices? The current branch of SCCM (version 1710) now allows for the co-management of your Windows 10 devices with Intune. Co-management between SCCM and Intune provides a path to make the transition from on-premise SCCM management to cloud-based Intune management. Now that SCCM and Intune can work together to manage a device, the transition to cloud management can be done at your pace in a controlled manner.

There are a few prerequisites that must be met to co-manage a device

  • SCCM must be at version 1709 or higher
  • You must have Azure AD
  • You must be licensed for Intune for each user you plan to manage
  • Azure AD automatic enrollment is enabled
  • Windows 10 devices to be co-managed must be on version 1709 or later and must be joined to both the on-premise AD as well as the Azure AD
  • The SCCM client must be installed

Once co-management is established, several of the on-premise workloads can be moved to Intune

  • Compliance polices
  • Windows Update for Business Policies
  • Resource Access Polices
    • VPN profiles
    • Wi-Fi profiles
    • Email profiles
    • Certificate settings

Once devices are enrolled in Intune, the administrator of your organization now has the ability to perform several key operations remotely with the user being connected to the corporate network or VPN:

  • Factory reset (restores a device to its factory settings, removing all company and user data)
  • Selective wipe (remove company data only)
  • Delete device
  • Restart device
  • Fresh start (removes any apps that are installed and then automatically updates the PC to the latest version of Win10 – removes any OEM software)

Figure 1 below is a graphical representation of a co-managed Windows 10 device.

Microsoft azure and intune graphic

Was this article helpful?