Skip to main content
日本語 简体中文 繁體中文

Checking and deleting Azure AD Registered (Azure AD device registration)

Target

This applies to customers using HENNGE Access Control federation on Microsoft 365, where end users use Microsoft 365 applications such as Edge browser, Teams, Outlook, etc., on Windows 10 devices.

Objective

Even if federation is performed by HENNGE Access Control on Azure AD-registered devices, there is a possibility that authentication may occur in Microsoft 365. This procedure addresses cases where, despite implementing HENNGE Access Control and federation in Microsoft 365, authentication for applications like Edge browser, Teams, Outlook, etc., is not happening through HENNGE Access Control. Reference: Disconnecting Azure AD Modern Authentication Reference: Relationship between Cloud Service Authentication Sessions and HENNGE Access Control

Notes

1. The content of this article is based on Microsoft's product information as of October 2021 and may be subject to change without notice due to updates or specification changes.

2. Microsoft 365 Global Administrator account is used for this procedure.

3. If an administrator removes Azure AD-registered devices from the Azure Portal, there may be errors during the next user login. In such cases, it is necessary to remove the Azure AD-registered status on the end user's Windows 10 device.

Detailed Procedure Explanation

1. Confirmation of Users with Registered Devices

This procedure is performed with the Microsoft 365 Global Administrator account. You can check if there are users with Azure AD device registration in the Microsoft 365 tenant.

1.1. Sign in to the Azure portal.

1.2. Access [Azure Active Directory].

mceclip1.png

1.3. Access [Devices].

mceclip3.png

1.4. Check if the [Join Type] column in the displayed list of devices has [Azure AD Registered].

mceclip0.png

If there are Azure AD-registered devices in the Microsoft 365 tenant, each device needs to undergo the following steps.

2. How to Remove Registered Devices (Windows 10)

This procedure is performed on each end user's Windows 10 device. Azure AD device registration can be removed on a Windows 10 device.

2.1. Refer to the following Microsoft article to delete registered device information.

Reference: How to locally remove Azure AD-registered status for a device?

 

Reference

- Manage Device IDs using Azure portal
- How to locally remove Azure AD-registered status for a device?
- Disconnecting Azure AD Modern Authentication
- Relationship between Cloud Service Authentication Sessions and HENNGE Access Control