none
Apple Device enrollment with User Affinity - Do I need to have ADFS for this to work? RRS feed

  • Question

  • Hello Experts, Please see screenshot below for details. We just recently enabled Apple School Manager and InTune. I can see all of our Apple Devices in the InTune portal, so we are starting to enroll them and assign them a profile. My question is about apple device enrollment with user affinity. Referring to the guide @ https://docs.microsoft.com/en-us/intune/enrollment/device-enrollment-program-enroll-macos it mentions "If using ADFS, user affinity requires WS-Trust 1.3 Username/Mixed endpointLearn more." but we do not have ADFS or a federated identity service. Do we need this in order for InTune user affinity to work? I ask because when I setup the enrollment profile, one of the options is to enroll with or without user affinity, and it mentions that "authentication is required to enroll with user affinity" but I'm unclear what it means by authentication - does that mean the intune client authenticates to our server OR the user must authenticate somewhere, maybe using ADFS ?

    Tuesday, October 8, 2019 7:02 PM

Answers

All replies