Enrolling Windows Modern Desktop Devices
Use the Windows Modern platform to enroll and manage Windows desktop devices. Use
enrollment policies to decide how devices enroll, to whom, and under what terms and
conditions. Among the options, you may also choose how long enrollment is available and
how many devices may enroll.
Important: An enrollment
policy cannot apply to more than one platform.
Attention: SOTI MobiControl version 2024.1
introduces Enrollment Policy PINs associated with every Windows Modern enrollment
policy. SOTI MobiControl assigns all existing enrollment policies a new
Enrollment Policy PIN upon upgrading from a lower version. SOTI MobiControl
determines whether a device can use the Enrollment Policy PIN at the time of enrollment.
Should a device not prompt for pin entry, it indicates the device’s incompatibility with
the Directory/Federated enrollment flow. While uncommon, this scenario is possible but
does not impede the enrollment process.
SOTI MobiControl supports the following enrollment types:
- Directory/Federated
Sets the source of available groups in the Groups tab to those in an on-premises LDAP (Active Directory, Domino, Open Directory, and others) or Federated login services (IdPs).
- Provisioning package
Devices enroll using a provisioning package.
- Azure AD Join
(On-premises)
Sets the source of available groups in the Groups tab to those in an on-premises Azure Active Directory.
- Azure AD Join
(Cloud)
Sets the source of available groups in the Groups tab to those in a cloud-hosted Azure Active Directory.