Hello everyone,
We have a really frustrating issue and so far nothing worked. We are moving from Intune MDM to Jamf MDM, but we are using Conditional access so the integration between Jamf and Intune must exist. The problem is that if you forget to remove the entries from Intune after resetting the device and you try to run the integration script you will receive an error, and from that point nothing will work.
Steps to reproduce:
Have an entry of an macbook enrolled with intune
wipe the macos and add it to Jamf server
Run the integration scrip
Company portal will open
sign in with AAD user
complete the steps on screen and you will receive an error
Reset the logs for integration scrip
Run again the script and after finishing company portal steps "Authentication for JamfAAD" prompt will open
A browser should open at this point, but nothing happens
What we tried so far:
Change default browser
Delete the entries from Jamf/Intune/AAD of the targeted device, Wipe de device and retry
Delete the entries from Jamf, delete de mdm profiles and rejoin the device with user enrollment
Completely wipe the device and retry
Step 6 from Microsoft documentation: https://learn.microsoft.com/en-us/troubleshoot/mem/intune/device-protection/troubleshoot-jamf#cause-...
Remove the device from ABM, reset the device, rejoin the device in ABM, retry the integration
Steps mentioned here: https://community.jamf.com/t5/jamf-pro/cannot-remove-profile/m-p/243119
So far we have to 2 devices in this conditions, unable to use them due to conditional access policy.
We also tried to sign in the user on a new device and we had no issues with the integration (no entries were in Intune of the device before we tried to run the integration scrip), however we tried to integrate the affected device with another user, but the issue still exist. Same behavior.
I have tried to contact Jamf support and Microsoft support, but so far nothing worked.
Is there anything else we can try?
Regards,
Traian
