Microsoft Azure (AZ-104): Device Management

Devices in Azure AD can be managed using Mobile Device Management (MDM) tools like:

• Microsoft Intune
• Microsoft Endpoint Configuration Manager
• Group Policy (hybrid Azure AD join)
• Mobile Application Management (MAM) tools
• Other third-party tools.

Before we can do that, we need to get the device registered or joined to Azure AD through the below options:

• Azure AD registered

Devices that are Azure AD registered are typically personally owned or mobile devices, and are signed in with a personal Microsoft account or another local account.

• Azure AD joined

Devices that are Azure AD joined are owned by an organization, and are signed in with an Azure AD account belonging to that organization. They exist only in the cloud.

• Hybrid Azure AD joined

Devices that are hybrid Azure AD joined are owned by an organization, and are signed in with an Active Directory Domain Services account belonging to that organization. They exist in the cloud and on-premises.