Share via

How to manage Autopilot OU with many computers deployed by Intune

Konrad Kasza 20 Reputation points
2024-09-13T10:02:15.2633333+00:00

Hello

I am facing some serious issue.
For now I have on-premise AD and since last year I can deploy computers by Intune.
It is working perfectly. Users with proper license only need to login to newly delivered computer (registered by our reseller earlier in portal) and connect ethernet wire.
From user's site there is no problem.

But I am trying to manage this AD in old way - means I am creating GPO on my primary DC and assigning it to proper users / computers.

But what is a problem - when I am deploying those computer by Intune, they need to be in the same OU with delegated control.
After one year I have more than 50 computers in this OU from different offices.
There is no way to create dedicated GPO for only part of them and I can't move them to other OU because synchronization with all of Microsoft services will be lost.
Growing amount of those computers in the same OU makes management of them as nightmare.
Idea of using AD is totally different that having all of them in one place.

Have any of you already had a similar problem ?
Or maybe you have some suggestion how this issue can be fixed ?

Thank you in advance

Konrad

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,515 questions
Windows Autopilot
Windows Autopilot
A collection of Microsoft technologies used to set up and pre-configure new devices and to reset, repurpose, and recover devices.
468 questions
Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
5,048 questions
0 comments
Accepted answer
  1. Pavel yannara Mirochnitchenko 12,576 Reputation points MVP
    2024-09-14T11:33:29.5733333+00:00

    I think you have two options here:

    1. Create multiple Autopilot profiles which will drop computers to different OUs. This will also serve you for a future installations.
    2. Create Security Groups in AADS for different purposes and assign GPOs based on OU locations AND Security Groups. You would need to add computers in groups manually.

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. ZhoumingDuan-MSFT 13,085 Reputation points Microsoft Vendor
    2024-09-16T06:31:30.6133333+00:00

    @Konrad Kasza,Thanks for posting in Q&A.

    For your issue, you can refer the methods mentioned by @Pavel yannara Mirochnitchenko to manage Autopilot OU in the future.

    And there is a similar thread that may help you.

    https://learn.microsoft.com/en-us/answers/questions/1345696/moving-automatically-computers-to-sub-ous-from-aut

    Hope it will help.

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.