Hello everyone,

We have a really frustrating issue and so far nothing worked. We are moving from Intune MDM to Jamf MDM, but we are using Conditional access so the integration between Jamf and Intune must exist. The problem is that if you forget to remove the entries from Intune after resetting the device and you try to run the integration script you will receive an error, and from that point nothing will work.

Steps to reproduce: 

Have an entry of an macbook enrolled with intune

wipe the macos and add it to Jamf server

Run the integration scrip
Company portal will open
sign in with AAD user
complete the steps on screen and you will receive an error

Reset the logs for integration scrip

Run again the script and after finishing company portal steps "Authentication for JamfAAD" prompt will open

A browser should open at this point, but nothing happens

What we tried so far:

Change default browser

Delete the entries from Jamf/Intune/AAD of the targeted device, Wipe de device and retry

Delete the entries from Jamf, delete de mdm profiles and rejoin the device with user enrollment

Completely wipe the device and retry

Step 6 from Microsoft documentation: https://learn.microsoft.com/en-us/troubleshoot/mem/intune/device-protection/troubleshoot-jamf#cause-6---the-device-was-previously-enrolled-in-intune
Remove the device from ABM, reset the device, rejoin the device in ABM, retry the integration

Steps mentioned here: https://community.jamf.com/t5/jamf-pro/cannot-remove-profile/m-p/243119

So far we have to 2 devices in this conditions, unable to use them due to conditional access policy.

We also tried to sign in the user on a new device and we had no issues with the integration (no entries were in Intune of the device before we tried to run the integration scrip), however we tried to integrate the affected device with another user, but the issue still exist. Same behavior.

I have tried to contact Jamf support and Microsoft support, but so far nothing worked.

Is there anything else we can try?

Regards,

Traian